IT Security Architect

IT Security ArchitectLocation(s):Toledo, OH, US, 43659-0001Function:Information TechnologyAudience:Experienced ProfessionalWork Arrangement:On SiteRequisition ID:66387PURPOSE OF THE JOBThe Security Architect is a critical member of the Owens Corning Information Security team. This team has global responsibility for ensuring the appropriate security processes, policies, and technologies are in place to support Owens Corning's business goals and objectives.Aligned with OC's enterprise growth initiatives and strategies, the Security Architect is a key role in driving Owens Corning's security strategy and securely enabling the business to take advantage of new technologies. Primary responsibilities of this role are to provide consultative guidance on new technology initiatives and projects, develop actionable recommendations, define security requirements and recommendations, evaluate risks and develop mitigations, and deliver security tools and processes to enable the business.A successful candidate will have core foundational knowledge in identity and access management as well as a broad IT technology background to manage security concerns with IT infrastructure, cloud, and applications. The ideal candidate will demonstrate the ability to connect and build trust with stakeholders, deliver on commitments, and drive results drives for results.Reports to: Director, GIS - Security Operations and ArchitectureSpan of Control: Individual contributor; indirect leadership of partners and project teamsJOB RESPONSIBILITIESKnowing Our Businesses and their StrategiesBuild relationships within the GIS organization, cross-functionally, and with key stakeholders; ensure effective contact to remain aligned with functional objectives.Understand the strategic direction of the company's businesses; develop and execute functional strategies to support and enhance business results and be knowledgeable of the project work that supports this direction and implications to the business.Know what best-in-class GIS organizations do and obtain outside-in market insights to understand and then apply to positively impact Owens CorningConsult on IT and business projects to ensure security risks are identified, prioritized, and managed appropriatelyDeveloping and Executing a StrategyDesign and Implementation: Develop, implement, and maintain security architectures for both traditional IT and cloud environments.Security Strategy: Create and update security strategies and frameworks to address evolving threats, including cloud-specific risks and hybrid deployments.Risk Assessment: Conduct project-based vulnerability assessments, penetration testing, and risk analysis across on-premises and cloud systems, and recommend mitigation strategies.Cloud Security: Implement cloud security controls, such as identity and access management, encryption, network segmentation, and monitoring.Data Security: Define security requirements and controls to protect company data and intellectual property from unauthorized exposure.Standards and Compliance: Develop and enforce security standards and procedures to ensure compliance with regulatory requirements and industry best practices.Stakeholder Collaboration: Advise stakeholders on security requirements for new initiatives, review proposed changes, and recommend secure solutions for business objectives.Security Reviews: Evaluate third-party software, services, and integrations for security risks, especially in cloud-based cident Response: Support incident management and post-incide

Created: 2025-12-08