Security Architect

Job Description

This role is a pivotal member of our Infrastructure Service & Operations team. This particular role has several varied requirements and needs a number of essential personal characteristics, skills, and competencies.The Security Architect is primarily responsible to secure enterprise information systems by determining security requirements and a security framework; planning, implementing, and testing security systems; preparing security standards, policies, and procedures; mentoring team members; and partnering with the FireEye Global Security Organization.

· Partner with InfoSec team, translating higher level architectures into meaningful tactical plans that address full stack security requirements, implementation needs and ongoing operational compliance.

· Design, build, and implement world-class security systems for a global enterprise corporate and production environment.

· Align standards, frameworks, and security controls with overall business and technology strategy

· Identify and communicate current and emerging security threats

· Design security architecture elements to mitigate threats as they emerge

· Create solutions that balance business requirements with information and cybersecurity requirements

· Identify security design gaps in existing and proposed architectures and recommend changes or enhancements

· Use current programming language and technologies to writes code, complete programming and performs testing and debugging of applications

· Reviewing current system security measures and recommending and implementing enhancements

· Answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members.

· Prepares system security reports by collecting, analyzing, and summarizing data and trends.

· Partner with subject matter experts throughout the organization to properly implement security that provides the necessary confidentiality, integrity, and availability of systems and data

Qualifications

· 10+ years’ experience in;

o Security architecture, demonstrating solutions delivery, principles and emerging technologies - Designing and implementing security solutions. This includes continuous monitoring and making improvements to those solutions, working with an information security team

o Consulting and engineering in the development and design of security best practices and implementation of solid security principles across the organization, to meet business goals along with customer and regulatory requirements.

o Security considerations of cloud computing: They include data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and DoS attacks.

o Identity and access management (IAM) – the framework of security policies and technologies that limit and track the access of those in an organization to sensitive technology resources.

• Ability to read and understand Python, API/web services, scripting languages and a relational database management system (RDBMS) such as MS SQL Server or Oracle. These are some of the technical elements needed to build security into an organization.
• Relevant National Institute of Standards and Technology (NIST) standards. A system that is not in compliance with the standards set by NIST, along with ISO27001, COBIT, will lack both compliance and adequate security architecture.
• ISO27001 – specifications for a framework of policies and procedures that include all legal, physical and technical controls involved in an organization’s risk management
• Control Objectives for Information and Related Technologies (COBIT)
• Vulnerability management and penetration testing systems, tools, practices, and procedures
• Application, infrastructure, physical, and administrative security controls and best practices
• Development and implementation of a formal information security program for operations
• Windows, Linux, and Cloud system security experience and expertise

General skills include:

· Exceptional communication and presentation skills with diverse audiences - Strong critical thinking and analytical skills

· Strong leadership, project and team-building skills, including the ability to lead teams and drive projects and initiatives in multiple departments

· Demonstrated ability to identify risks associated with business processes, operations, information security programs and technology projects

· The ability to be the enterprise security subject matter expert who can explain technical topics to those without a technical background.

· Hands-on experience with FireEye’s security products

· Certified Information Systems Security Professional (CISSP)

· Certified Information Security Manager (CISM)

· Certified Cloud Security Professional (CCSP)

· Certified Information Systems Auditor (CISA)

· Information Systems Security Architecture Professional (ISSAP)

· Information Systems Security Engineering Professional (ISSEP)

· Certificate of Cloud Security Knowledge (CCSK)

· SANS-related certifications

Additional Information