Under minimal direction the Enterprise Information Security Architect will help to ensure cybersecurity risks and threats are proactively identified and addressed to maintain the protection of Harris County's information systems, critical assets, and network security infrastructure.

Duties and Responsibilities:

• Leads and manages design, development and implementation of Information Security Architecture and standards and support security solutions based on risk criteria by employing a Defense-in-Depth approach to segment and protect software and hardware assets.

• Validates and tests complex security architecture and designs to produce detailed specifications, artifacts, and deliverables (models, templates, standards, and procedures) for existing and proposed technologies.

• Analyzes current technology environment to identify deficiencies and recommend solutions, staying abreast of emerging security technologies and trends and apply them where appropriate.

• Identities and develops new architecture standards for secure cloud adoption.

• Contributes to development of the enterprise cloud architecture and leads the security vision and strategy around cloud-based applications, across all service models.

• Produces written technical reports and develops presentations on enterprise security approach and solutions.

• Serves as information security subject matter expert and prepares security procedures and standards.

• Coordinates with application development teams to advocate secure coding practices.

• Must be able to build security infrastructure from the ground up or update existing systems in response to ongoing changes in the Harris County enterprise security landscape and peer organizations.

• Reviews network segmentation, firewall rules and network diagrams to ensure confidentiality, availability, and integrity.

• Ensure IT solutions are architected to be compliant with regulatory, legal, and legislative requirements including CJIS, PII, PCI, HIPAA, etc.

• Regularly communicates security needs, vulnerabilities, risks, and controls to management and assists in remediation.

• Develops, writes, and coordinates security risk assessments for third-party vendors, Harris County internally developed, cloud and on-prem applications / systems to protect data/systems and support governance efforts.

• Supports communication and presentation of Cybersecurity policies, standards, and procedures to stakeholders and articulates information/data governance solution requirements.

• Participates in the Cybersecurity Incident Response Team (CIRT) investigation and response activities as required.

• Works on multiple projects as a subject matter expert, including projects or issues of high complexity that require in-depth knowledge across multiple technical areas and business segments.

• May also participate in the evaluation and implementation of other new security solutions and technologies.

• Develops procedures, training materials, metrics/measures packages, reports, project plans, and communication and executive presentations with little guidance, as needed to support the overall delivery of cybersecurity objectives.

• Must be able to weigh business needs against security concerns and articulate issues to management and stakeholders.

• Supports communication and presentation of Cybersecurity policies, standards, and procedures to stakeholders and articulates information/data governance solution requirements.

• Other duties as assigned.

Harris County is an Equal Opportunity Employer
  https://hrrm.harriscountytx.gov/Pages/EqualEmploymentOpportunityPlan.aspx
 If you need special services or accommodations, please call (713) 274-5445 or email ADACoordinator@bmd.hctx.net.
 
 This position is subject to a criminal history check. Only relevant convictions will be considered and, even when considered, may not automatically disqualify the candidate.