Security Architect

Good things are happening at Berkshire Hathaway GUARD Insurance Companies. We provide Property & Casualty insurance products and services through a nationwide network of independent agents and brokers. Our companies are all rated A+ “Superior” by AM Best (the leading independent insurance rating organization) and ultimately owned by Warren Buffett’s Berkshire Hathaway group – one of the financially strongest organizations in the world! Headquartered in Wilkes-Barre, PA, we employ over 1,000 individuals (and growing) and have offices across the country. Our vision is to be a leading small business insurance provider nationwide.

Founded upon an exceptional culture and led by a collaborative and inclusive management team, our company’s success is grounded in our core values:  accountability, service, integrity, empowerment, and diversity. We are always in search of talented individuals to join our team and embark on an exciting career path!

Benefits:

We are an equal opportunity employer that strives to maintain a work environment that is welcoming and enriching for all. You’ll be surprised by all we have to offer!

• Competitive compensation
• Healthcare benefits package that begins on first day of employment
• 401K retirement plan with company match
• Enjoy generous paid time off to support your work-life balance plus 9 ½ paid holidays
• Up to 6 weeks of parental and bonding leave
• Hybrid work schedule (3 days in the office, 2 days from home)
• Longevity awards (every 5 years of employment, receive a generous monetary award to be used toward a vacation)
• Tuition reimbursement after 6 months of employment
• Numerous opportunities for continued training and career advancement
• And much more!

The Security Architect will be responsible for designing and evaluating the security infrastructure of our organization. This role requires a deep understanding of security principles, technologies, and best practices to protect our systems and data from threats.

Key Responsibilities:

• Create a Secure Environment
• Design and implement robust security architectures for cloud environments.
• Evaluate and improve existing security measures with a focus on cloud infrastructure.
• Ensure the confidentiality, integrity, and availability of cloud-based systems and data.
• Tool Selection
• Research and select appropriate security tools and technologies to protect cloud environments.
• Implement and integrate security tools into existing cloud infrastructure.
• Continuously evaluate the effectiveness of security tools and make recommendations for updates or replacements.
• Secure Development
• Ensure that secure development practices and patterns are followed across all cloud-based applications.
• Collaborate with development teams to integrate security into the software development lifecycle.
• Collaborate with Development to develop and implement best practices for security code reviews and provide guidance on secure coding practices.
• Compliance
• Ensure compliance with all relevant industry standards (ISO, NIST, GDPR, NYDFS 500) and regulatory requirements.
• Monitor changes in regulations and adjust security practices as necessary.
• Prepare and maintain documentation related to security compliance.
• Monitoring and Response
• Assist in monitoring cloud environments for security events and incidents.
• Respond to security incidents and provide thorough analysis and documentation.
• Implement strategies for proactive threat detection and response.
• Security Improvement
• Identify opportunities for improving overall security posture and implement improvements.
• Conduct regular security assessments and audits.
• Collaborate with cross-functional teams to drive security initiatives.

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Proven experience as a Security Architect or similar role.
• In-depth knowledge of security protocols, cryptography, and security frameworks.
• Experience with security tools and technologies such as firewalls, IDS/IPS, SIEM, and endpoint protection.
• Strong understanding of network architecture and security controls.
• Excellent problem-solving and analytical skills.
• Relevant certifications such as CISSP, CISM, or CEH are a plus.
• Cloud experience is a requirement.  Microsoft Azure experience is preferred.