27 Feb
Security Architect (Cloud/Azure)
Vacancy expired!
- Acquires a complete understanding of a company’s data, technology, and information systems.
- Plans, researches, and determines security requirements by evaluating business strategies and requirements, researching information security standards, conducting security and vulnerability analysis and risk assessments, and studying architecture/platform of the enterprise for implementation and integration of security requirements.
- Plans security systems and operating security controls; evaluates network and security technologies, develops requirements for local area networks (LAN’s) and wide area networks (WAN’s), virtual networks, and virtual private networks (VPN’s), routers, firewalls, and related security devices (IDS, IPS, SIEM).
- Designs encryption solutions including the public key infrastructure, certificate authorities, and digital signatures for hardware and software solutions in alignment with internal standards and industry best practices.
- Implements security systems by specifying intrusion detection methodologies and equipment; directs equipment and software installation and configuration, prepares preventative and reactive measures for incident response and incident management.
- Verifies security systems, network segmentation, and remediation of security vulnerabilities through testing.
- Maintains security by monitoring and analysis for assurance to standards, policies, and procedures. Identifies security gaps through risk assessments and review of IT infrastructure.
- Enhances security team accomplishments and competence by planning delivery of solutions. Reviews and answers technical and procedural questions for less experienced team members; teaches improved processes; mentors team members.
- Designs, documents, and deploys cybersecurity systems that will be used across the environment.
- Provides design validation for new technology and major changes within the environment.
- Ensures the confidentiality, integrity, and availability of the data residing on or transmitted to/from/through the enterprise networks.
- Participates in defining best of class security practices for enterprise networks providing high-volume financial services transactions. Updates job knowledge by tracking and understanding emerging threats and compromise vectors, industry best practices and standards, personal and professional networking, and participation within professional organizations.
- Collaborates with other technology groups and technology architects on product strategy discussions.
- Develops or implements open-source/third-party tools to assist in the detection, prevention, and analysis of security threats.
- Serves as Tier 2 resource for Incident Response and operational functions.
- Adheres to Agile principles and philosophies (Scrum or Kanban, as applicable) in fulfillment of the role.
- Collaborates within the direct team in accordance with Team Agreement, Definition of Ready, and Definition of Done.
- Works as a cross-functional team member in an Agile setting to help complete and deliver the team commitments.
- Collaborates across teams and across business areas in the spirit of an Agile mindset.
- Fulfills the role in the spirit of the Agile Manifesto, with emphasis on delivery of incremental value with frequent iterations and feedback loops.
- Reports risks that are identified to the appropriate team and/or management. Additionally, responsible for managing, monitoring, and reporting risks within the scope of your work area to include, but not limited to, Information Security risks.
- Bachelor’s degree in computer science/related field.
- 10+ years’ work experience in system/network engineering.
- 5+ years of security engineering experience.
- Minimum of 10+ years’ integration of systems and network engineering experience in mid to large IT organizations.
- Knowledge of PCI DSS 3.2 and financial services regulatory requirements.
- 5+ years of experience in security management, information security risk assessments, information security engineering, network security management, application design and architecture, and network engineering.
- 5+ years of hands-on and progressive information security design and implementation. Direct engineering experience preferred.
- Experience providing internal penetration testing, vulnerability scanning, verification of network segmentation, and remediation of associated findings.
- Network administration with routing, switching, packet capture, and analysis.
- Exceptional planning, organization, communication, presentation, multi-tasking, prioritization, documentation, and business analysis skills.
- Ability to work independently in addition to working closely in a team environment.
- IDS/IPS and SIEM experience with enterprise-grade solutions.
- Experience with firewalls (perimeter and web application) and knowledge of IP networking and network security including Intrusion Detection, DMZ, encryption, IPSec, PKI, VPNs, MPLS/VPLS, Site to Site VPN tunnels, SSL/VPN, proxy services, and DNS.
- Knowledge of regulatory requirements and security best practices and procedures for financial services.
- Effectively prioritize and execute tasks in a high-pressure environment.
- Ability to provide support in resolving IT security or related operational and product issues as required.
- Team-oriented and skilled in working within a collaborative environment.
- The ability to interpret technical needs and provide thorough and complete support.
- Effective communications, interpersonal, strong analytical and problem-solving skills.
- Organized, keen attention to detail, and efficient.
- Highly self-motivated and directed.
- Strong background in network security-related technologies.
Vacancy expired!