The American Society of Mechanical Engineers (ASME)


2 days old

Director, US Security Architecture

Waltham, MA
Apply Now
Apply on the Company Site
  • Job Code
Description: Description About the position: The role of Director, US Security Architecturewill act as the senior security design authority for National Grid US, ensuringthat a Security Architecture is formally approved and adopted to ensure thatthe complexity of our environments can be managed securely and successfully,delivering to the business values, goals, and objectives. The role will provide a focal pointfor the creation and re-use of value by leading security architectural changein our business and industrial control system environments, establishing visionand planning for future state security architectures, influencing and directingDR&S, National Grid and Partner leaderships accordingly. The role will define and own thecreation and operation of the National Grid Security Architecture functionestablishing a formal methodology and framework for risk driven informationsecurity and information assurance architectures, supporting critical businessinitiatives, driving a philosophy of resilience and recovery. The role will lead and manage theproduction of SABSA compatible enterprise security architecture and associated patterns,ensuring all National Grid security services are appropriately documentedwithin IS tools, such as Troux and System Architect, and available for re-useby architects and others. The role will provide direction to DR&Sfunctions and business areas through the production of enterprise referencepatterns, an Information Security Policy Architecture, and the leadership of,or representation at, appropriate governance boards. Job responsibilities including but not limited to:
Definition,ownership and maintenance of the National Grid Security Architecture. Productionand maintenance of artefacts that inform and direct Security ServiceArchitecture activities. Tocapture and formulate a register of exceptions to the holistic delivery of theagreed Security Architecture and articulate these as requirements for inclusionin a 3-5 year rolling Cyber Security development roadmap. Seniorlevel stakeholder management. Abilityto take a 'big picture' strategic view as well as being able to work at adetailed level across a broad range of technologies and approaches Capabilityto represent security architecture with senior IT and business managers and stakeholders Provisionand maintenance of a formal methodology and framework for risk driveninformation security and information assurance architectures, security designand risk assurance encompassing people, process and technology. Influencingsenior budget holders to acceptance, approval and adoption of strategicsecurity goals and associated solution frameworks. Accountablefor identifying options that minimize overheads to budgetary challenges. Ensurethat services and solutions provided conform to the National Grid SecurityArchitecture. Governance and maintenance of the enterprise securityarchitecture through its inception, implementation and in life risk managementdetermining value and adjusting the architecture according to identifiedthreats and weaknesses.
Qualifications Qualifications & Experience: Educatedto degree level (or equivalent combination of education and experience). InformationSecurity Qualifications such as CISSP, CSSLP, CISM, SABSA Practitioner preferred. SecurityQualifications such as SANs, CCNA, CCNP. Position requires a disciplinedthinker capable of developing and maintaining an architectural framework withinwhich complexity is broken down so it can be clearly articulated and managedsuccessfully. The individual will need to lead and influence senior leadership,working across organisational boundaries to ensure that appropriate andappropriate security architecture is adopted and supported throughout thebusiness. Role requires the individual to bebusiness and service focused, understanding the inter-relationship betweentechnical and procedural solutions to support the long term needs of thebusiness, taking account of operational / long term costs and influencingsupport for agreed security strategies. Must have leadership and influencingskills at a senior level, capable of communicating strategically, achievingstated aims and goals. Good organisational skills, time management, attentionto detail and accuracy over multiple simultaneous activities to derive aholistic security architecture. Must be pro-active, adaptable and resultsdriven, whilst capable of interpreting and delivering on strategies and directionprovided. Must be a team playerwho must be able to manage directly and through influence / matrix. Be able to workunder pressure, manage multiple activities, using their own initiative andmotivation to meet deadlines and set priorities without close supervision. Must have the ability to effectivelyarticulate complex technical requirements and provide thought leadership to seniormanagement. Drawing on a broad range of skills and experience; creatinginnovative insights, adapting methods and practices to fit team and culturalneeds. Strongbackground in enterprise and / or security architecture frameworks such as Zachman/E2AF/TOGAF/SABSAand their operation, including domain based security models, secure developmentlifecycle and application security. Strongknowledge and experience developing and implementing security servicearchitectures and their operation across partner eco-systems. Experienceof establishing security architecture control models that inform each stage ofthe software development lifecycle process. Experienceof designing and managing security controls within service providers and thecloud. Experienceof developing Information Security Policy Architecture models and theirapplication in complex environments. Strongcommunication, leadership and partnering skills. Ableto demonstrate a high degree of credibility and influence senior stakeholderswithin the Organisation. Proventrack record of successfully delivering business requirements to time andbudget constraints. Ableto operate as a highly independent worker and as part of a strongteam/collaborative approach. PriorCritical National Infrastructure (CNI) and utility industry experiencepreferred. National Grid is an equalopportunity employer that values a broad diversity of talent, knowledge,experience and expertise. We foster aculture of inclusion that drives employee engagement to deliver superiorperformance to the communities we serve. National Grid is proud to be an affirmative action employer, committedto providing equal opportunity to employees and applicants for employmentwithout regard to race, color, religion, creed, national origin, ancestry,alienage or citizenship status, gender, sexual orientation, gender identity orexpression, age, physical and mental disability, marital status, veteranstatus, predisposing genetic characteristics, or any other factor protectedfrom discrimination under municipal, state, or federal law. We encourage allinterested, qualified persons to join the National Grid team.
Job : IS DIgital Security & Risk Primary Location : MA-Waltham Organisation : IS Digital Security & Risk Schedule : Full-time Job Posting : Aug 8, 2017, 7:56:55 PM Unposting Date : Ongoing


  • Mechanical Engineering - Applied Mechanics
  • Mechanical Engineering - Design
  • Mechanical Engineering - Power
  • Mechanical Engineering - Environmental / Solar / Sound
  • Operations

Featured Employers[ View All ]

Share this job:

Director, US Security Architecture

National Grid
Waltham, MA

Share this job

Director, US Security Architecture

National Grid
Waltham, MA

Separate email addresses with commas

Enter valid email address for sender.

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast