Enterprise Security Architect : Newark, NJ (hybrid)

[Deepika Dua]

Greetings,

 

Please carefully read the Job Description below, and if you would like to pursue this opportunity, please email me an updated MS Word version of your resume to Deep...@VBeyond.com at your earliest convenience.  If you're not interested feel free to send me your resume and let me know what type of positions, I can help you with. I appreciate your time and look forward to hearing from you. 

 

Please share 18 - 20 Years experience candidates 

Include contact details and the LinkedIn profile link of the candidate in the email.

Mention Candidate current location & work Authorization/Visa status of the candidate

 

Position: Enterprise Security Architect

Location: Newark, NJ (hybrid)

Duration : Long term Contract

 

Role Purpose 

Define enterprise security architecture standards, create security patterns and frameworks, establish security controls by tier, and provide the security templates that enable secure-by-design solutions. This role creates security patterns and standards, not operational security implementation. 

What Makes This Role Unique 

·         Policy translator: Convert InfoSec policies into practical architectural patterns solution architects can apply 

·         Security-by-tier architect: Define exactly what security controls are required for each application tier (Tier 0/1/2/3) 

·         Zero-trust strategist: Lead the enterprise adoption of zero-trust architecture through patterns and templates 

·         Strategic partnership: Bridge between architecture and operational security (InfoSec team) 

Key Responsibilities 

Enterprise Security Standards & Patterns (40%) 

·         Define security architecture reference architectures (zero-trust, defense-in-depth) 

·         Create security patterns library (authentication and authorization patterns, API security patterns, data protection patterns, network security patterns, application security patterns) 

·         Establish security controls by application tier (Tier 0: HSM, 24/7 SOC, multi-region DR; Tier 1: MFA, encryption at rest/transit, WAF; Tier 2/3: standard security controls) 

·         Define identity and access management (IAM) patterns 

·         Document encryption and key management standards 

·         Create secrets management patterns 

Security Frameworks (30%) 

·         Build secure design templates for common patterns (web apps, APIs, microservices) 

·         Develop threat modeling framework (STRIDE, PASTA templates) 

·         Create security testing framework (SAST, DAST, penetration testing standards) 

·         Establish DevSecOps patterns and shift-left security standards 

·         Define security compliance frameworks (SOC 2, ISO 27001, GDPR, HIPAA patterns) 

Security Architecture Governance (20%) 

·         Review solution architectures for security pattern compliance 

·         Conduct threat modeling for strategic initiatives 

·         Define security architecture review criteria 

·         Translate InfoSec policies into architectural patterns 

·         Establish security exception process 

Enablement (10%) 

·         Train solution architects on security patterns 

·         Conduct secure design workshops 

·         Maintain security pattern catalog 

·         Partner with InfoSec on security requirements 

Required Qualifications 

Education: 

• Bachelor's degree in Computer Science, Information Security, or related field 

Experience: 

·         7+ years in security architecture, enterprise architecture, or cybersecurity 

·         5+ years creating enterprise security standards and patterns 

·         Proven experience with zero-trust architecture and secure design patterns 

·         Experience establishing security controls frameworks and compliance patterns 

·         Track record conducting threat modeling and security architecture reviews 

Certifications (Required/Preferred): 

·         CISSP (Certified Information Systems Security Professional) - required 

·         TOGAF certification - preferred 

·         SABSA certification - preferred 

·         Cloud security certification (AWS Security Specialty, Azure Security Engineer, Google Cloud Security Engineer) - preferred 

·         CISM or CISA - preferred 

Required Technical Skills 

Skill Category	Required Skills	Proficiency Level
Security Patterns	Security pattern library creation	Expert
Security Patterns	Security controls by tier	Expert
Security Patterns	Zero-trust patterns	Expert
Security Frameworks	Threat modeling frameworks (STRIDE, PASTA)	Expert
Security Frameworks	Security testing frameworks (SAST, DAST)	Advanced
Security Frameworks	DevSecOps patterns	Advanced
Policy Translation	InfoSec policy to pattern translation	Expert
Policy Translation	Compliance frameworks (SOC 2, ISO 27001, GDPR, HIPAA)	Advanced
Security Architecture	IAM patterns and implementation	Expert
Security Architecture	Encryption and key management	Advanced
Security Architecture	API security patterns	Advanced
Platform Knowledge	Cloud security (AWS, Azure, GCP)	Advanced

 

Preferred Qualifications 

·         Experience in highly regulated industries (healthcare, finance, government) 

·         Background in penetration testing or offensive security 

·         Experience implementing zero-trust at enterprise scale 

·         Deep knowledge of compliance frameworks and audit processes 

Success Metrics (First 12 Months) 

·         Security pattern adoption rate 80%+ for new solutions 

·         100% of strategic initiatives complete threat modeling 

·         Security controls by tier framework established with 90%+ compliance 

·         Publish 10+ security patterns in catalog 

·         Conduct 50+ architecture security reviews 

·         Reduce security incident rate by 30% for pattern-compliant solutions 

What You'll Deliver 

·         Security architecture reference architectures 

·         Security pattern library 

·         Security controls by application tier 

·         Zero-trust implementation patterns 

·         IAM patterns and templates 

·         Threat modeling framework 

·         DevSecOps standards 

·         Security review criteria 

Working Relationships 

Key Partnerships: 

·         InfoSec team (operational security, policy translation) 

·         Solution architects (apply security patterns) 

·         Cloud & Platform Architect (security controls by tier alignment) 

·         Compliance and audit teams 

Governance Participation: 

·         Architecture Review Board (bi-weekly) 

·         Security Architecture Review (weekly - you lead this) 

·         Pattern Review Sessions (bi-weekly) 

Company Culture & Values 

Our Enterprise Architecture team operates on principles of collaboration, excellence, and innovation: 

·         Pattern-first mindset: We create reusable blueprints that enable consistency and quality 

·         Partnership model: We work alongside operational teams (App Dev, Data Platform, Infrastructure, InfoSec) as strategic partners 

·         Continuous improvement: Patterns evolve based on feedback from implementation 

·         Enablement focus: Success means solution architects effectively apply our patterns 

·         Executive backing: Strong leadership support for architecture governance and standards 

 

 

Regards,
Deepika Dua

VBeyond Corporation

https://www.linkedin.com/in/deepika-dua-018459166/

E: Deep...@vbeyond.com | www.vbeyond.com

390 Amwell Road, Suite # 107, Hillsborough, NJ 08844

 

Note – VBeyond is fully committed to Diversity and Equal Employment Opportunity.

 

Disclaimer: We respect your Online Privacy. This is not an unsolicited mail. Under Bill S 1618 Title III passed by the 105th US Congress this mail cannot be considered Spam as long as we include Contact information and a method to be removed from our mailing list. If you are not interested in receiving our e-mails then please reply to anur...@vbeyond.com subject=Remove. Also mention all the e-mail addresses to be removed which might be diverting the e-mails to you. We are sorry for the inconvenience.