Security Risk Architect

LocationAtlanta, Boston, Chicago, Houston, Los Angeles, New York, San FranciscoJob DescriptionAbout L.E.K. Consulting:L.E.K. Consulting is one of the premier strategy consulting firms worldwide. At L.E.K., we are passionate about helping our clients succeed with breakthrough insights that drive real impact. Our clients view us as trusted partners that help address their most pressing challenges and biggest opportunities.We bring together the rigor of data-driven analysis with the creativity and curiosity of a collaborative team. By hiring exceptional people and fostering a culture of ownership, inclusion, and continuous learning, we develop leaders who thrive on challenge and bring energy and optimism to every engagement. Founded in 1983, L.E.K. employs more than 2,200 professionals across five continents, and is consistently recognized as one of the industry’s best firms to work for. For more information, visit lek.com.Overview Of RoleThe Security & Risk Architect is a senior technical leader within the Information Security team, responsible for advancing the firm’s cybersecurity strategy and strengthening enterprise security capabilities across infrastructure, cloud platforms, applications, and emerging AI technologies.This role partners closely with IT, engineering, and business stakeholders to manage security operations, vulnerability management, incident response, secure software development practices, and AI security governance. The position supports a global environment aligned to the NIST Cybersecurity Framework and ISO 27001 standards.The IT team is prioritizing hiring in Boston and / or Chicago.ResponsibilitiesSecurity Operations & Risk ManagementIdentify, assess, and respond to cybersecurity and privacy risks across the organization Serve as a technical escalation point for security incidents, investigations, and threat response activities Support incident response, digital forensics, and coordination during critical security events Monitor threat intelligence and recommend proactive risk mitigation strategies Security Architecture & ToolingLead the management and optimization of enterprise security tools and platformsEvaluate security technologies, identify capability gaps, and recommend improvementsManage security controls across Active Directory, Azure, Entra ID, endpoint security, and cloud environmentsEnsure systems and infrastructure maintain secure and hardened configurations Vulnerability & Compliance ManagementOversee vulnerability management processes, reporting, and remediation coordinationConfigure and maintain security monitoring, reporting, and compliance metricsDrive continuous improvement initiatives across security processes, tools, and policiesSupport disaster recovery, backup oversight, and operational resilience efforts Application Security & Secure DevelopmentIntegrate security requirements into the software development lifecyclePartner with development teams to implement secure-by-design practices within CI/CD pipelinesLead application security reviews, code analysis, and penetration testing activitiesPromote secure coding standards aligned with OWASP, NIST, and ISO 27001 frameworksManage third-party and open-source software risk, including supply chain security controls AI Security & GovernanceSupport governance and security oversight for AI platforms and tools, including Microsoft Copilot and Azure OpenAIEstablish controls for AI usage, access management, and data governanceMonitor emerging AI security risks, including prompt injection, adversarial behavior, and data exposure threatsPartner with legal, compliance, and business stakeholders to develop responsible AI usage policies QualificationsBachelor’s degree or equivalent experience6+ years of experience in Information Technology, including 3+ years in Information SecurityExperience with enterprise security technologies and cloud security platformsFamiliarity with cybersecurity frameworks such as NIST and ISO 27001Knowledge of application security concepts, including SAST, DAST, SCA, and secure coding practicesUnderstanding of AI/ML security risks and governance principlesRelevant certifications such as CISSP, Security+, or CEH are preferred Skills & CompetenciesStrong analytical and problem-solving skillsExcellent communication and stakeholder management abilitiesAbility to lead initiatives and mentor junior team membersStrong organizational and project management skillsAdaptability in a fast-paced, evolving environmentAbility to influence technical strategy and drive cross-functional security initiatives Additional Information: The expected base salary range for this position is $130,000 – $150,000 annually. Actual compensation will be determined based on experience, qualifications, skills, and location. This position may also be eligible for discretionary bonus and a comprehensive benefits package. L.E.K. Consulting offers a competitive total rewards package including medical, dental, vision, life and disability insurance, 401(k) with employer contribution, HSA contributions (where applicable), paid time off, and other firm-sponsored benefits. This role is based in any of our U.S. office and follows our hybrid work model for U.S. offices.  We require employees to be in their assigned home office Tuesday, Wednesday, and Thursday each week, as well as the first Friday of each month. Applicants must be legally authorized to work in the United States on a permanent basis without the need for employer sponsorship. Unfortunately, we are unable to consider candidates requiring visa sponsorship, including but not limited to H-1B, TN, F-1 (OPT/CPT/STEM), or other work authorization. L.E.K. Consulting is an Equal Opportunity Employer. We are committed to providing equal employment opportunities to all qualified individuals regardless of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law. In accordance with applicable state and local laws, we will provide reasonable accommodations for qualified individuals with disabilities and for sincerely held religious beliefs, practices, or observances. For more information and to apply, please visit: https://www.lek.com/careers/apply