Information Security Architect

Mechanical Orchard is a fast-growing startup that takes a fresh view on old problems. We replace legacy computing systems for the Global 2000 with a focus on mitigating risk and creating a genuinely solid foundation for innovating and adapting.

Our background in software development and the impact on the industry is well known and we've literally helped write the book on XP and other impactful agile practices. We’re applying the same thoughtfulness and rigor in weaving AI into everything we do. We believe in the durable principles behind agile and embrace the power of cross-functional teams collective ownership test driven development short feedback loops and continuous improvement.

We are Generous Ethical Effective and Kind.

Mechanical Orchard is looking for an Information Security Architect to lead the technical aspects of our journey towards NIST 800-53 and ISO 2700x compliance. Candidates must be located in a North American timezone (UTC-4 to UTC-8).

Responsibilities

• Design and Development: Responsible for creating and implementing the overall security architecture of the organization including systems networks and applications.

• Strategic Planning: Develop long-term security strategies and roadmaps to protect the organization’s assets.

• Frameworks and Standards: Ensure security architectures align with industry standards and frameworks (e.g. NIST ISO 27001).

• Compliance: Prepare for audits and work with auditors to complete audits.

• Risk Management: Identify assess and mitigate security risks across the organization.

• Policy Development: Develop security policies standards and procedures.

• Advisory Role: Provide guidance and expertise to other teams on security best practices and architecture.

• Technology Selection: Evaluate and recommend security technologies and solutions.

Required Experience

• Extensive Experience: 7-10+ years in information security or related fields.

• Architectural Skills: Proven experience in designing and implementing security architectures.

• Leadership Abilities: Proven ability to lead security initiatives and influence stakeholders at all levels.

• Compliance: Have played a lead role in a successful NIST or ISO audit.

• Certifications: CISSP-ISSAP CISSP or CISM.

Skills

• Strategic Thinking: Strong ability to think strategically about security issues.

• Technical Expertise: Deep knowledge of security technologies protocols and best practices.

• Communication Skills: Excellent written and verbal communication skills and an ability to communicate complex security concepts to both technical and non-technical audiences.

• Analytical Skills: Strong problem-solving and analytical abilities to assess security risks and develop effective solutions.

Mechanical Orchard Inc. is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind. Mechanical Orchard Inc. is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Mechanical Orchard Inc. are based on business needs job requirements and individual qualifications without regard to race color religion or belief national social or ethnic origin sex (including pregnancy) age physical mental or sensory disability HIV Status sexual orientation gender identity and/or expression marital civil union or domestic partnership status past or present military service family medical history or genetic information family or parental status or any other status protected by the laws or regulations in the locations where we operate. Mechanical Orchard Inc. will not tolerate discrimination or harassment based on any of these characteristics. Mechanical Orchard Inc. encourages applicants of all ages. Mechanical Orchard Inc. will provide reasonable accommodation to employees who have protected disabilities consistent with local law.

We look forward to reviewing your application. Thanks!