Location Irvine, CA
Job Type Contract Full-Time
Job Description


Under the general guidance of the Director, Information Security, the Information Security Architect provides I.T. system security designs and solutions and creates the information security foundation for service solutions, processes and innovative ideas.  This role will deliver information security expertise over a wide range of I.T. and business solutions that will be delivered through direct participation on project teams and consultative services to all Business Relationship (BR) and I.T. Service Area groups.  This role will also plan, design and manage enterprise information security initiatives in support of the core security functions of the Information Security group.  Develops and maintains information security policies, standards and processes, and applies in-depth knowledge of functional aspects of information systems security and compliance. 



1.      Works closely with all BR, COE and Business groups as a subject matter expert in systems and network security technology and practices.  Manages and/or participates in security implementation projects to ensure security requirements are evaluated and met.  Provides input as a member of project teams to ensure that adequate security controls and features are implemented into information systems as an integral part of the initial system design.

2.      Manages the development and implementation of Information Security policies and standard procedures to ensure the ongoing practice of security as a process within Company.  Participates as a member of I.S. Computer Incident Response Teams (CIRT) in the event of an emergency security or non-security breach.

3.      Key participant in formulating I.S. security strategies.  Determines technology and process requirements to implement security strategies.  Assesses Company’s I.T. environment against industry best practices and benchmarks to determine the weaknesses and vulnerabilities of the information security infrastructure, implementing security measures to decrease exposure to attack and/or penetration.

4.      Maintains up-to-date knowledge and awareness of industry trends related to Information Security and assess its impact on business operations.  Understands public policy and regulatory trends related to privacy and security.

5.      Understands the criticality of business processes with reference to policies and processes.  Conducts security risk assessments to proactively identify and minimize the probability of risk occurrences.



Education and Experience:

·         A minimum of five (5) years of progressively increasing responsibility and achievement in the Information Services area with at least three (3) years in information security, including demonstrated experience with information security, vulnerability and threat management technologies for large and complex organizations.

·         A Bachelor’s Degree in a related technical or business discipline is required.  Specific experience in the pharmaceutical and/or health care industry with specific FDA regulatory compliance experience is desirable.

·         CISSP or other industry recognized security certification (such as CISM, GIAC and CISA) is preferred.

·         Knowledge and working experience with vulnerability assessment, penetration testing, incident response, industry security standards and practices, web application security, security audit/review processes and applying corporate and federally mandated policies.

·         Demonstrated ability to be a respected information security advisor to senior I.T. management, as well as to I.T. operations, operating groups, technical staff, and project management, and the skills to interface across several channels to proactively assist in defining solutions, direction, specifications and architectural principals.

·         In-depth, up-to-date and broad knowledge of the Information Technology Security field is required, including all major communications and computing technologies and trends, including significant domestic and international exposure.

·         Experience managing large-scale projects in a team-oriented cross-organizational environment.  This level of experience to have been gained by several years of increasing levels of project responsibilities and accomplishments in several areas of information systems organizations.

Essential Skills and Abilities:

·         Excellent interpersonal, oral/presentation and written communications skills in both technical and non-technical language.

·         Conceptual and analytical thinker, able to understand, analyze, and synthesize complex business and technology issues and strategies.

·         Team builder/player able to work effectively with others with a demonstrated cultural awareness for interactions in multicultural and multi-national settings.

·         Broad information technology and project management background.

·         Strong judgment and decision making skills; be self-motivated with the ability to work independently and in teams with minimal direction but willingness to seek advice/assistance.

·         Flexible and adaptable process-oriented work style; strong demonstrated work ethic; personal time management skills.

·         Demonstrated work ethic that emphasizes customer focus, quality and continuous improvement.