0000000695.IT SECURITY ARCHITECT.INFO TECH SERVICES at Dallas County

Develops and maintains enterprise security architecture frameworks, roadmaps, and reference models aligned with County objectives and regulatory obligations (e.g., CJIS, HIPAA, NIST 800-53). Designs secure technical architectures for new systems and major changes, ensuring security requirements are embedded in solution design and implementation. Leads collaboration with IT Security, IT Operations and IT Application teams to evaluate system and network designs and recommend improvements to enhance security posture. Performs security architecture reviews and threat modeling for high-impact projects, cloud integrations, and third-party services. Supports governance efforts by contributing to the development and maintenance of security standards, secure configuration baselines, and design patterns. Partners with Security Engineering, Security Operations and Security Compliance teams to address audit findings, design compensating controls, and support vulnerability remediation strategies. Provides security architectural input during procurement and vendor evaluations, including review of technical responses, data handling practices, and other procurement documents. Performs other duties as assigned.

Education, Experience and Training: Education and experience equivalent to a Bachelor's degree from an accredited college or university in Information Systems, Cybersecurity, Computer Science, or in a job-related field of study. Seven (7) years of experience in information security architecture, engineering, or systems design. Certifications (Preferred): • Certified Information Systems Security Professional (CISSP) • Certified Information Security Manager (CISM) • Certified Cloud Security Professional (CCSP) • Relevant cloud or architecture credentials a plus. Special Requirements/Knowledge, Skills & Abilities: • Ability to effectively communicate, both verbally and in writing for collaboration, reporting, and to translate technical security risks into business language. • Strong analytical and problem-solving skills with the ability to evaluate complex systems and recommend appropriate solutions. • Ability to collaborate with infrastructure, operations, compliance, and other County departments to align technical security solutions with organizational priorities. • Ability to manage multiple projects, adapt to shifting priorities, and deliver results in a fast-paced environment. • Ability to work independently and effectively in a team-oriented environment. • Strong analytical, organizational, and documentation skills. • Ability to participate in an on-call rotation for after-hours security incident escalation. • Knowledge and understanding of enterprise security architecture principles, including IAM, encryption, network segmentation, and application security. • Knowledge of compliance and regulatory frameworks relevant to government environments (e.g., CJIS, HIPAA, NIST, PCI-DSS). • Knowledge of security architecture methodologies such as SABSA or NIST 800-53, and the ability to align technical designs with risk and compliance frameworks (e.g., CJIS, HIPAA, NIST CSF). • Knowledge of cloud security principles (e.g., Azure, M365, SaaS, PaaS) specific to security architecture and integration practices. • Skill in risk analysis, threat modeling, and technical control design. • Ability to support enterprise IT environments across hybrid cloud, Microsoft 365, identity platforms, and zero trust architectures. • Skill in working with and managing engagement with 3rd party security vendors, and managed security service providers. Must have a valid Texas Driver's License and good driving record. Will be required to provide a copy of 10-year driving history. Must maintain a good driving record and remain in compliance with Article II, Subdivision II of Chapter 90 of the Dallas County Code. “Individuals holding or considered for a position which has, or may have, access to criminal justice databases including the FBI Criminal Justice Information Systems, NCIC/TCIC and similar databases, must pass a national fingerprint-based records check prior to placement in such position and may be denied placement in such positions and/or access to such systems. Incumbents must also maintain the ability to pass the records check while in the position or until such time that the Commissioners Court and the County Civil Service Commission deem this position no longer has this requirement.” Physical/Environmental Requirements: Standard office environment. Ability to lift and carry up to 25 lbs. unassisted. Work a 40-hour hybrid work week with on-call availability for two (2) days per month. Sitting for extended periods of time.