À propos
As a Senior Principal Security Architect in the Cybersecurity Architecture Center of Excellence, your responsibilities will include a comprehensive review of existing security controls and architectures for on-premises, client, and cloud. You will also influence changes in existing control standards, create new IT security standards that are easily consumed by stakeholders, create specific security patterns & diagrams, and own the security capability 3-year roadmap. This role will be essential as the ambassador for the shift in the technology culture at client to a Security-First mindset. Primary focus areas for this position are the following:
Produce security architecture deliverables as part of initiatives related to cloud, endpoint, and networking Partner with IT teams to design and deliver architectures to deliver on the zero-trust vision Proactively identify security gaps, propose solutions, and follow through with engineering teams for implementation Inspire team members and more junior staff to contribute new ideas and alternative approaches to problems
RESPONSIBILITIES:
Develops and maintains a security architecture process that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology, and threat drivers Influence change of control policies with Technology Risk Management & build strong partnerships with IT Architecture & Application Development partners Create IT security standards easily consumed by IT stakeholders Build access management security patterns (standardizing authentication/authorization flows, single-sign-on/MFA, provisioning, user behavior analytics, access governance system controls, privileged/secrets mgt) and designs as part of initiatives to modernize the client access management security posture Evaluate the existing application security controls, on-premises and cloud, identify improvements, and build plans into the application security capability roadmap for implementation Mentor junior security architects to enhance their security and architecture skills within the team Maintain professional and technical process knowledge by keeping abreast of the changing security landscape within the technology industry and changes in cybersecurity frameworks Create white papers and present in industry conferences to present thought leadership in the security field Aligns risk and control processes into day-to-day responsibilities to monitor and mitigate risk; escalates appropriately QUALIFICATIONS:
8-10 years of related experience Master's degree preferred Strong Cybersecurity experience across network, application (web, API) & public/private cloud security architecture (web application firewalls, containers, etc.) Experience in AWS/Azure cloud and DevOps including orchestration Experience with zero trust architectures and concepts Experience in architecting IAM sub-capabilities (authentication/authorization, user behavior analytics, provisioning) Strong experience in identifying access management control gaps Understanding of core cryptography concepts including PKI Experience with Information Security frameworks (e.g. ISO 27001 and NIST) & security architecture frameworks Experience architecting automated data center processes, including provisioning, application, patch management, monitoring and alerting, capacity monitoring and planning, leveraging execution and human approval workflow design and implementation Experience in OS security (Windows, Linux) and RDMS Has strong communication skills with the ability to present in front of large audience
Compétences linguistiques
- English
Avis aux utilisateurs
Cette offre provient d’une plateforme partenaire de TieTalent. Cliquez sur « Postuler maintenant » pour soumettre votre candidature directement sur leur site.