Job Description
Job Description –
The position will work with Enterprise Architects and Application Dev teams to come up with Security Architecture for applications and enterprise tech capabilities migrating to Cloud.
Must-Haves
- Required qualifications to be successful in this role: 7-10 years of total IT experience with the following must haves:
- 4+ Years of experience in Cyber Security field as an Information Security Architect or Cloud Security Architect
- 2-4 years of experience in AWS as a Cloud Security Architect/Engineer and must be certified in at least one of the cloud technologies/infrastructures
- Excellent written and communication skills to report, document and communicate security architecture
- Excellent coordination skills and must be detail oriented
Nice-to-Haves
- Cloud agnostic security architecture experience a plus
- 1-2 years of experience in working with NIST assessments of business applications
- Container Security experience to protect container workloads during build and run-time
- API Security architecture experience with industry standard API Gateways
- Security engineering/administration background leveraging SIEM, Network firewalls, host-based security, and security configuration
- One or more industry standard security certification such as CISSP, CCSP or relevant GIAC certifications
- One or more Cloud Service Providers Security Specialty Certifications such as AWS Security Specialty or Azure AZ-500 Certification
- The group of skills related to Security including designing and evaluating security systems, identifying security threats, securing computers, assessing vulnerability, etc.
- The group of skills related to Relationship Management including managing and engaging stakeholders, customers, and vendors, building relationship networks, contracting, etc.
- Skilled in presenting information and/or ideas to an audience in a way that is engaging and easy to understand
- The group of skills related to Risk Assessment and Management including evaluating and designing controls, conducting impact assessments, identifying control gaps, remediating risk, etc.
- Experience identifying and determining levels of risk to an organization's networks and systems using cybersecurity techniques
- Working with people with different functional expertise respectfully and cooperatively to work toward a common goal
- Skilled in cloud technologies and cloud computing
- The group of skills related to Influencing including negotiating, persuading others, facilitating meetings, and resolving conflict
Key Areas Of Responsibility
- Partner with Enterprise/Portfolio Architecture team and Business Units development squads to collaboratively develop security architectures/designs leveraging approved patterns that ensure applications migrating from on-premise to Cloud, achieving high standards of security practices and compliance.
- Drive the development and adoption of cloud security standards, best practices, and technologies within Enterprise IT infrastructure
- Liaise on security-related issues with internal business stakeholders, InfoSec, Enterprise Architecture, and application development squads
- Work to develop, enhance and document security architecture, security policies, patterns, procedures, guidelines and standards required to design cloud-based solutions
- Educate application, portfolio and solution architects on secure solution design and industry best security practices
- Work on assessments of compliance and standards including and not limited to NIST, FedRAMP, FIPS, etc.
- Support threat modeling and update application security architecture as needed.
- Support application development squads with Security implementations and issues