Enterprise Information Security Engineer/ Architect
$120,000–$155,000 year
Hybrid · New York City, New York, United States
Job Summary
The Enterprise Information Security Engineer/Architect role designs and implements secure enterprise solutions across on-premises, cloud, and SaaS environments. Responsibilities include architecting security controls, leading security operations (monitoring, vulnerability assessments, penetration testing, incident response), and managing governance, risk, and vendor relationships. The role emphasizes developing security requirements from threat assessments and regulations, ensuring compliance, educating staff on cybersecurity best practices, and collaborating with ITS teams and business units. Requires strong communication, in-person collaboration, and 6+ years of information security experience with a Bachelor's degree in a related field; professional certifications (e.g., CISSP, CISM, CCSP, CISA) are preferred. The position is hybrid, requiring in-office presence in Midtown Manhattan part of the work week.
Required Qualifications
- BA/BS in Computer Science, Engineering, or related field preferred
- 6+ years of Information Security experience
- Strong knowledge of cybersecurity principles, frameworks, and tools
- Experience with IDS, IPS, firewalls, and SIEMs
- Deep understanding of Cloud Security and SaaS Vendor Security
- Proficiency in risk assessment, incident response, and threat modeling
- Excellent communication skills for cross-functional collaboration
- Preferred Certifications: CISSP, CISM, CCSP, CISA, multiple GIACs
- Experience with AWS, Azure, M365, Entra ID, Splunk, CrowdStrike, Darktrace, and Tripwire is a plus
Additional Requirements
- No visa sponsorship
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.