27 Feb
Security Architect (Cloud/Azure)
Georgia, Alpharetta , 30004 Alpharetta USA

Vacancy expired!

Security ArchitectContract-to-Hire Opportunity in Alpharetta, GA

Overview:We are seeking a talented Security Architect that is passionate about managing corporate security along with a desire to champion best practices. This role performs all the functions required to design and support day-to-day data security operations across a broad suite of internal infrastructure and data processing systems. The Security Architect secures all data and enterprise information systems by determining security requirements through planning, implementing, testing, and verification of design. The Security Architect participates in the Enterprise Architecture Review Board for review of submitted plans for assurance of secure design and alignment to internal standards. The incumbent documents security standards, policies, and operating procedures and mentors cybersecurity team members. The Security Architect prepares analysis and recommendations for remediation of vulnerabilities and findings from application security testing, vulnerability scanning, and penetration testing and verification testing of remediation. This role works with Information Technology staff and business units to assess risk and address security issues. This position is flexibly remote. That means that this position is currently remote due to COVID. Once we make the transition back into the office, there may be flexibility for a hybrid schedule of both remote and in-office work.

Responsibilities:
  • Acquires a complete understanding of a company’s data, technology, and information systems.
  • Plans, researches, and determines security requirements by evaluating business strategies and requirements, researching information security standards, conducting security and vulnerability analysis and risk assessments, and studying architecture/platform of the enterprise for implementation and integration of security requirements.
  • Plans security systems and operating security controls; evaluates network and security technologies, develops requirements for local area networks (LAN’s) and wide area networks (WAN’s), virtual networks, and virtual private networks (VPN’s), routers, firewalls, and related security devices (IDS, IPS, SIEM).
  • Designs encryption solutions including the public key infrastructure, certificate authorities, and digital signatures for hardware and software solutions in alignment with internal standards and industry best practices.
  • Implements security systems by specifying intrusion detection methodologies and equipment; directs equipment and software installation and configuration, prepares preventative and reactive measures for incident response and incident management.
  • Verifies security systems, network segmentation, and remediation of security vulnerabilities through testing.
  • Maintains security by monitoring and analysis for assurance to standards, policies, and procedures. Identifies security gaps through risk assessments and review of IT infrastructure.
  • Enhances security team accomplishments and competence by planning delivery of solutions. Reviews and answers technical and procedural questions for less experienced team members; teaches improved processes; mentors team members.
  • Designs, documents, and deploys cybersecurity systems that will be used across the environment.
  • Provides design validation for new technology and major changes within the environment.
  • Ensures the confidentiality, integrity, and availability of the data residing on or transmitted to/from/through the enterprise networks.
  • Participates in defining best of class security practices for enterprise networks providing high-volume financial services transactions. Updates job knowledge by tracking and understanding emerging threats and compromise vectors, industry best practices and standards, personal and professional networking, and participation within professional organizations.
  • Collaborates with other technology groups and technology architects on product strategy discussions.
  • Develops or implements open-source/third-party tools to assist in the detection, prevention, and analysis of security threats.
  • Serves as Tier 2 resource for Incident Response and operational functions.
  • Adheres to Agile principles and philosophies (Scrum or Kanban, as applicable) in fulfillment of the role.
  • Collaborates within the direct team in accordance with Team Agreement, Definition of Ready, and Definition of Done.
  • Works as a cross-functional team member in an Agile setting to help complete and deliver the team commitments.
  • Collaborates across teams and across business areas in the spirit of an Agile mindset.
  • Fulfills the role in the spirit of the Agile Manifesto, with emphasis on delivery of incremental value with frequent iterations and feedback loops.
  • Reports risks that are identified to the appropriate team and/or management. Additionally, responsible for managing, monitoring, and reporting risks within the scope of your work area to include, but not limited to, Information Security risks.

Requirements:
  • Bachelor’s degree in computer science/related field.
  • 10+ years’ work experience in system/network engineering.
  • 5+ years of security engineering experience.
  • Minimum of 10+ years’ integration of systems and network engineering experience in mid to large IT organizations.
  • Knowledge of PCI DSS 3.2 and financial services regulatory requirements.
  • 5+ years of experience in security management, information security risk assessments, information security engineering, network security management, application design and architecture, and network engineering.
  • 5+ years of hands-on and progressive information security design and implementation. Direct engineering experience preferred.
  • Experience providing internal penetration testing, vulnerability scanning, verification of network segmentation, and remediation of associated findings.
  • Network administration with routing, switching, packet capture, and analysis.
  • Exceptional planning, organization, communication, presentation, multi-tasking, prioritization, documentation, and business analysis skills.
  • Ability to work independently in addition to working closely in a team environment.
  • IDS/IPS and SIEM experience with enterprise-grade solutions.
  • Experience with firewalls (perimeter and web application) and knowledge of IP networking and network security including Intrusion Detection, DMZ, encryption, IPSec, PKI, VPNs, MPLS/VPLS, Site to Site VPN tunnels, SSL/VPN, proxy services, and DNS.
  • Knowledge of regulatory requirements and security best practices and procedures for financial services.
  • Effectively prioritize and execute tasks in a high-pressure environment.
  • Ability to provide support in resolving IT security or related operational and product issues as required.
  • Team-oriented and skilled in working within a collaborative environment.
  • The ability to interpret technical needs and provide thorough and complete support.
  • Effective communications, interpersonal, strong analytical and problem-solving skills.
  • Organized, keen attention to detail, and efficient.
  • Highly self-motivated and directed.
  • Strong background in network security-related technologies.
Must be local and eligible without sponsorship.

To apply, please email your resume to

Vacancy expired!

Subscribe for new vacancies
Report job