25 Feb
Cloud Security Architect
New York, New york city , 10001 New york city USA

Vacancy expired!

Job Description - Cloud Security ArchitectThe Cloud Security Architect will lead the design, strategy, and development for all efforts related to security initiatives which involve the use of cloud based services and solutions in support of an enterprise organization. This job position will contribute to the Information Security Program, by focusing on the use of security architecture principles and standards to attain the highest level of risk assurance and control for cloud-based applications, services, and solutions across various types; Infrastructure, Platform, Hybrid, and Software-as-a-Service (IaaS/PaaS/SaaS). Responsibilities:

  • Design, develop, research, and implement security architectures for all types of cloud based solutions and services to be used by the bank.
  • Must have a solid understanding of offerings provided by Microsoft Azure/O365, Amazon AWS, and Google Cloud Computing Services.
  • Understand the common integration principles used in the cloud, such as the use of various API's, SAML, OpenID, and OAUTH.
  • Must be familiar with the concepts of CASB, Data Lakes, Hadoop processing, Machine-Learning, and virtualization as it relates to the cloud.
  • Have experience with Mobile Device Management; in particular Microsoft Intune services and the associative security capabilities of an MDM, SDK functions provided by Apple and Android, policy controls, containerization, application wrapping, In-App VPN, Secure Mobile Browsing, and integration with O365 capabilities and extensions.
  • A strong working knowledge of cybersecurity threats, how they transcend the internet, impact on financial services, and the types of mitigations the cloud offers to enhance security.
  • Support the PMO function in terms of developing standard documentation as it relates to Project Charters, IT Requirements, Design Diagrams, SOW's, MSA's, Operational Run-books, and Project Closures.
  • Develop security strategy for cloud-based architectures that conform with business requirements and met with a minimal level of risk to the organization using bank approved security controls and standards.
  • Act as a SME for the Security Architecture Team and engage in the secure implementation of the overall global enterprise cloud directive by engaging with other technical architects within the IT organization.
  • Work with Engineering, Infrastructure Services, and Application Development teams within the organization to select the appropriate cloud solutions and services.
  • Develop and execute new strategies and standards to enhance cloud visibility and knowledge as it relates to security throughout the enterprise.
  • Actively participate in the banks Governance Committee activities as it relates to assessing risk for new technology, services, and solutions to be used in support of the business; including support for risk assessment activities.
  • Must be aware of the various requirements set forth by regulators, government mandates, and compliance obligations as it relates to the Financial Services industry from a global perspective.
Qualifications:
  • 10 years' experience with Security Architecture and/or Engineering required.
  • 5 years' experience required with various Cloud platforms such as Azure/O365, AWS, and Google Compute.
  • College degree or/equivalent
  • Minimum of 5 Years of experience with some or all of these security frameworks and standards; NIST CSF/800-53, ISO/27001, COBIT, MITRE Telecommunication&CK, OWASP, and SANS.
  • Minimum of 2 years of experience with API web-services delivery, risks, and controls.
  • Must hold a certification from a leading information security consortium; ISC2, ISACA, or equivalent.
  • Certified Cloud Security Professional (CCSP) preferred.
  • Strong interpersonal and communication skills; ability to work in a diverse team environment.
  • Ability to work independently with minimal direction; self-starter/self-motivated.
  • Ability to review project deliverables for completeness, quality, and compliance with established project standards.
  • Strong technical and business writing experience required.
  • Experience architecting solutions within Azure/O365 and AWS.
  • The ability to research, assess, develop, implement, optimize, and document based on a comprehensive and broad set of security technologies and processes such as; Application Security, Data Protection, Cryptography, Key Management, Federation, Network Security, Crowdsourcing, and Threat Intelligence within SaaS, IaaS, PaaS, and other cloud environments.
  • Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (SAML, OAuth, OpenID).
  • Experience with service-oriented architecture for cloud-based services.
  • Experience with cloud security and governance tools, cloud access security brokers (CASBs), and use of virtualization.
  • Experience performing threat modeling and design reviews to assess security implications and requirements for introduction of new technologies, services, and solutions.
  • Experience representing technical viewpoints to diverse audiences and making prudent technical risk decisions.
  • Experience with enterprise architecture and working as part of a cross-functional team to implement solutions.
  • Knowledge of security industry best-practices, including non-repudiation, auditing, and monitoring.

Vacancy expired!


Related jobs

Report job