Wittaff

ENTERPRISE SECURITY ARCHITECT

Seeking an experienced Enterprise and Security Architect. This hybrid role combines strategic enterprise architecture leadership with deep security expertise. The individual will define and govern the organization’s technology architecture while ensuring robust security frameworks are embedded across all layers—business, application, data, and infrastructure, with a critical emphasis on Data Loss Prevention (DLP), Source Code Protection, and Insider Risk Management.

This role will interface directly with development teams and senior leadership. Of course, there is broad exposure to other aspects of information security related tasks such as vendor risk assessment, cloud security posture management, and the evaluation of next-generation security technologies. The successful candidate for this position is a highly motivated individual with a strong background in Enterprise Architecture, Security frameworks (NIST, ISO, CIS), Identity & Access Management (IAM), and Data Protection who wants to educate and build a holistic technology and security strategy.

Key Responsibilities:

• Enterprise Architecture Strategy:
• Develop and maintain IT architecture roadmaps aligned with business objectives.
• Define standards for application, data, and infrastructure architecture.
• Lead Fit Gap Analysis of new and emerging technologies.
• Propose new technology solutions, configurations, or strategies to ensure compliance with security and performance requirements.
• Security Architecture Strategy:
• Design and implement enterprise security architecture frameworks
• Embed security principles into all technology solutions and integrations
• Lead the selection and configuration of security tooling
• Architect and implement comprehensive Data Loss Prevention (DLP) strategies to secure Source Code and IP across endpoints, SaaS applications, and repositories.

Required Technical Expertise:

• Technical Expertise
• Enterprise architecture frameworks (TOGAF, Zachman)
• Security frameworks (NIST, ISO 27001, CIS Controls)
• Cloud platforms (AWS, Azure, GCP) and cloud security best practices
• Identity & Access Management, encryption, secure API design.
• Data loss prevention and insider risk platforms
• Deep understanding of DevSecOps pipelines and SCM security (Perforce, GitHub, Jenkins).
• Knowledge of regulatory compliance frameworks (GDPR, HIPAA, NIST) and their application to data governance.
• Experience
• 8 years in enterprise architecture and security roles.
• Education:
• Bachelor’s degree in Computer Science, Information Security, or related field.
• Preferred Certifications:
• The Open Group Architecture Framework (TOGAF)
• (ISC)² Certified Information Systems Security Professional (CISSP)
• (ISC)² Certified Cloud Security Professional (CCSP)
• (ISC)² Information Systems Security Architecture Professional (CISSP-ISSAP)

Soft Skills:

• Strong analytical and problem-solving abilities.
• Excellent communication and collaboration skills.
• Ability to balance business needs with security imperatives.

Job Type: Contract

Pay: $80.00 - $90.00 per hour

Work Location: Hybrid remote in San Jose, CA 95134