Stanford University's Information Security Office (ISO) is looking for a senior Cybersecurity Architect with deep technical knowledge and a wide set of experiences to work with our small, tightly-knit team on a wide range of information security-related projects.
ISO is a high-profile team, and is one of the few departments with University-wide purview, so you'll have plenty of opportunity to share and shine. We operate with a high degree of autonomy, expecting each of our contributors to bring their own special talents to bear on the tough challenges facing the University. It isn't easy doing information security at a large research University, but we have a great time doing it. Trust, innovation, and fun are at the heart of what we do.
The Cybersecurity Architect is a critical role within the Information Security team at Stanford University. Reporting to the Chief Information Security Officer (CISO), this senior technical member is responsible for safeguarding our networks against cyber threats. You'll assist the CISO in the ongoing development and delivery of a comprehensive campus-wide information security strategy that adequately protects information assets, aligns with and supports the risk posture of the University, and meets applicable compliance and evolving regulatory requirements.
The successful candidate will work with department and technology leaders across all seven schools, plus the senior administrators in our business and administration groups, such as the Office of the General Counsel, Risk Management, Privacy, and Audit services, to assess and manage risks while balancing modern security strategies with other institutional priorities.
To excel in this role, you'll need extensive experience and up-to-date knowledge of the cybersecurity landscape, including a deep understanding of common network and host-based attacks, attack methods, and network defense architecture. You should also have a proven track record of architecting solutions that effectively balance practical business needs and security.
You will apply a variety of technical skills which include architecting security solutions through analysis, design and prototyping tasks required to provide end-to-end security.
The Cybersecurity Architect will also work closely with other team members to actively monitor for security anomalies and conduct vulnerability assessments. In order to be effective, you will need well-established experience and expansive knowledge in incident response, intrusion detection systems, firewalls, SEIM (Splunk or other) or other information security products including cloud application security experience.
As the Cybersecurity Architect, you will also be involved in security event log analysis, endpoint forensic analysis, vulnerability analysis, and information risk assessments and audits to ensure that information systems and data are adequately protected and meet regulatory requirements.
This role is open to candidates anywhere in the United States. Stanford University has five Regional Pay Structures.
The compensation for this position will be based on the location of the successful candidate. The expected pay range for this position is $133,000 to $211,000 per annum/hour. Stanford University provides pay ranges representing its good faith estimate of what the university reasonably expects to pay for a position. The pay offered to a selected candidate will be determined based on factors such as (but not limited to) the scope and responsibilities of the position, the qualifications of the selected candidate, departmental budget availability, internal equity, geographic location, and external market pay for comparable jobs.
Your specific responsibilities include:
To be successful in this position you will bring:
- Bachelor's degree and ten years of increasingly technical work experience or a combination of education and relevant experience.
- Deep understanding of information security technology approaches, applications (which may include scientific applications), tools, and methodologies, as well as a broad background in a variety of technology platforms.
- In-depth architecture and configuration knowledge.
- Extensive experience with debugging, troubleshooting, forensics, and security utilities.
- In-depth knowledge of authentication protocols, encryption and other fundamental security technologies.
- Strong knowledge and understanding of industry standard information security practices.
- Excellent communication skills and the ability to explain complex technical ideas to non-technical audiences and work with individuals at all levels.
- Demonstrated experience in mentoring team members and providing technical guidance to customers and stakeholders.
- High level of integrity and excellent judgment concerning proprietary and privacy issues.
- Knowledge of architecture and interrelationships (technical and functional).
- Ability to combine information technologies to create solutions for complex problems.
- Ability to work effectively in a team environment and lead cross-functional teams.
- An entrepreneurial spirit with a passion for learning, growing, and having fun.
The job duties listed are typical examples of work performed by positions in this job classification and are not designed to contain or be interpreted as a comprehensive inventory of all duties, tasks, and responsibilities. Specific duties and responsibilities may vary depending on department or program needs without changing the general nature and scope of the job or level of responsibility. Employees may also perform other duties as assigned.
Consistent with its obligations under the law, the University will provide reasonable accommodation to any employee with a disability who requires accommodation to perform the essential functions of his or her job.
Stanford is an equal employment opportunity and affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law.