Built on meritocracy, our unique company culture rewards self-starters and those who are committed to doing what is best for our customers.
Brown & Brown is seeking a Security Architecture Director to join our growing team!
As a senior leader in the corporate information security group, the Security Architecture Director will be responsible for leading a group of Security Architecture and Engineering practitioners. The responsibilities associated with this role will vary, but require the candidate to be highly technical, while being able to translate strategic and tactical direction into business terms. The specific responsibilities will change regularly, as the role is both highly technical and collaborative with senior leaders in IT and various businesses. Having exceptional communication and organizational skills is paramount in a company that is growing quickly with a rapidly changing technology landscape.
How You Will Contribute:
- Lead the team of security architects to evaluate existing business security strategies, address security risks, and implement control enhancements.
- Ensure security architecture aligns with business criticality and value.
- Lead and support information security projects by researching, documenting, and implementing security solutions.
- Foster relationships with our industry partners to communicate our approach to security and develop programs to establish typical industry security audit reports (SOC 2, etc.).
- Lead assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development, application security, data protection, cryptography, key management, identity and access management, network security) within SaaS, IaaS, PaaS in cloud environments.
- Establish technology architecture, align with business criticality and value, evaluate resiliency, application and device rationalization and lifecycles, disaster recovery.
- Other duties as assigned.
Licenses and Certifications:
- Relevant certifications such as CISSP, CISM, CISA or cloud-specific
- Microsoft architect-level certification (or willing to obtain one shortly after hiring).
- Preferred: Microsoft Certified Cybersecurity Architect Expert.
- Alternatively: Microsoft Certified Solutions Architect Expert.
- AWS Certified Security Specialty certification.
Skills & Experience to Be Successful:
- Bachelor's or better in Information Security, Computer Science, or related field.
- At least 8-10 years of experience in information security, with a minimum of 5 years in cloud security, particularly in Azure and AWS environments.
- Driven and organized with the ability to direct multiple complex cloud-based projects simultaneously, while managing day to day activities of the team(s).
- Critical thinker, having an ability to identify options, the pros & cons of each from different angles, and to make recommendations based on risks and opportunities.
- Strong knowledge of security frameworks and standard, including NIST CSF, CIS-18, GDPR, HIPAA, ISO 27001.
- Exposure to NYDFS, SEC and other regulatory examinations and annual attestations.
- Solid grounding in basics of infrastructure - VMs, networking, DNS, Firewalls, application design, Cloud Access Security Broker (CASB), Data Loss Prevention (DLP) / Governance, Cloud architectures, server and endpoint security practices.
- Ability to assist with incident response and forensics associated with cloud compromises.
- Good understanding of current best practices and approaches to identity and access including Azure AD, OAuth 2.0, SAML 2.0, OpenID Connect.
- Familiarity with the capabilities of key Azure PaaS workload types, such as App Services, Azure SQL, AKS.
- Familiarity with approaches to security in the cloud – WAF, OWASP, DDoS protection.
- Ability to collaborate and assist the CISO with defining and driving security strategic directions.
- Travel requirements are limited and focused on opportunistic engagements with businesses.
- Position can be staffed as a fully remote team member, with periodic onsite engagements.
Pay Range
$200k - $225k Annual
The pay range provided above is made in good faith and based on our lowest and highest annual salary or hourly rate paid for the role and takes into account years of experience required, geography, and/or budget for the role.
Teammate Benefits & Total Well-Being
We go beyond standard benefits, focusing on the total well-being of our teammates, including:
- Health Benefits: Medical/Rx, Dental, Vision, Life Insurance, Disability Insurance
- Financial Benefits: ESPP; 401k; Student Loan Assistance; Tuition Reimbursement
- Mental Health & Wellness: Free Mental Health & Enhanced Advocacy Services
- Beyond Benefits: Paid Time Off, Holidays, Preferred Partner Discounts and more.
Not reflective of all benefits. Enrollment waiting periods or eligibility criteria may apply to certain benefits. Benefit details and offerings may vary for subsidiary entities or in specific geographic locations.
The Power To Be Yourself
As an Equal Opportunity Employer, we are committed to fostering an inclusive environment comprised of people from all backgrounds, with a variety of experiences and perspectives, guided by our Diversity, Inclusion & Belonging (DIB) motto, “The Power to Be Yourself”.
