Security Review Architect (Remote) - Contract Position

Welcome to Gallagher – a global leader in insurance, risk management, and consulting services. With a growing team of more than 52,000 professionals worldwide, we empower businesses, communities, and individuals to thrive. At Gallagher, you can build a career whether it’s with our brokerage division, our benefits and HR consulting division, or our corporate team. Experience The Gallagher Way, a culture fueled by shared values and a collective passion for excellence. Join one of our dynamic teams, where you'll play a pivotal role in shaping Gallagher's future and unlocking unparalleled opportunities for both clients and yourself.

We believe that every candidate brings something special to the table, including you! So, even if you feel that you’re close but not an exact match, we encourage you to apply.

The Security Review Architect will serve as a key technical resource in the Global Cyber and Information Security (GCIS) organization. This role is responsible for reviewing and managing internal requests for security architecture reviews and security risk assessments, ensuring alignment with current frameworks, design patterns, standards, and best practices. The role involves working closely with Information Security colleagues, IT & Infrastructure teams, and Business units worldwide to facilitate security reviews and assessments, organizing related documents, and communicating findings to influence cybersecurity objectives.

• This is a Temp-To-Hire, W-2 position. We are not able to do 1099 or C2C.
• It is a fully remote role based in the U.S. or Canada.
• You must meet our U.S. eligibility requirements for work authorization.

1. Work with the Cyber Architecture Manager to develop and refine the security architecture review process.
2. Create and document processes, frameworks, templates, and communications to mature the review process.
3. Manage the intake and review process, keeping requestors informed and developing automated tools as needed.
4. Collaborate with internal teams such as Enterprise Architecture, 3rd Party Risk Management, Mergers & Acquisitions, Cloud Architecture, Network, Infrastructure, and Security Engineering to streamline requests and ensure consistency.
5. Refer to and recommend improvements for security standards, artifacts, design patterns, and technical specifications based on review feedback.
6. Determine when security engineers should be involved and collaborate accordingly.
7. Define review processes for requests from non-US locations, collaborating with global partners for consistency.
8. Work with risk and compliance teams to align and improve risk frameworks, standards, and policies.
9. Provide feedback and recommendations to enhance the security architecture, improve security posture, and mitigate risks.
10. Identify technical and architectural risks proactively, creating review documents with alternatives that align with standards.
11. Participate in forums and provide thought leadership in cybersecurity architecture as requested.

• Bachelor's degree or equivalent experience in Computer Science or related field.
• At least 2+ years of cybersecurity and/or risk mitigation experience.
• Minimum 2+ years of experience in reviewing or documenting detailed technology solutions.
• Experience with creating/evaluating solution architectures, code, models, and vendor documents, with the ability to articulate risks.
• Experience or exposure to insurance and risk management domains.
• Strong collaboration, elicitation, and documentation skills.
• Proven ability to communicate cybersecurity architecture standards effectively.
• Highly organized, detail-oriented, responsive, and proactive.
• Knowledge of enterprise architecture frameworks such as TOGAF.
• Knowledge of security standards like NIST CSF, ISO 27001, CSA CCM, PCI-DSS, GDPR.

• Security certifications such as CISSP, CCSP, TOGAF Security.
• Strong knowledge of cloud offerings (IaaS, PaaS, SaaS).
• Experience with security tools like firewalls, endpoint protection, MFA, data protection.
• Experience working in regulated, globally distributed environments.

• Strong oral and written communication skills.
• Self-starter with a strong work ethic.
• Flexible, resilient, and able to handle various demands.
• Ability to manage multiple tasks and projects simultaneously.
• Problem solver with pragmatic solutions.
• Collaborative and proactive in influencing partners for security resolutions.

We offer a competitive salary, great teams, and exciting career opportunities, along with a wide range of benefits:

• Medical/dental/vision plans from day one.
• Life and accident insurance.
• 401(K) and Roth options.
• Tax-advantaged accounts (HSA, FSA).
• Educational expense reimbursement.
• Paid parental leave.

Other benefits include mental health services, flexible work hours, training programs, Gallagher Thrive health programs, charitable matching, and more.

Gallagher is committed to inclusion and diversity, supporting communities and fostering an environment where all employees are valued and respected. We comply with all applicable laws regarding equal employment opportunity and reasonable accommodations for disabilities.