Technical Architect - Information Security
This position is responsible for understanding the IT enterprise architecture to identify security gaps, develop controls and design solutions that meet business objects while complying with security standards. Candidates must have a firm understanding of security concepts relating to all IT areas including Operating Systems (Windows, Linux, Unix), Networking, Database, Application/Web Development, etc. Individual will also be required to provide leadership and guidance to a team of engineers as well as Level 3 support as needed. An understanding of common compliance standards and regulations (e.g. PCI, SOX, HIPPA) is required. Individual must also possess the ability to translate said compliance requirements into policies, standards and guidelines that align with corporate strategy.
• Meet with project teams and other system architects to develop system designs and project plans that include the appropriate security controls and meet security standards
• Serve as the solutions architect for all IT Security sponsored projects and initiatives
• Must have a firm grasp of concepts and technology across all IT areas to be able to spot gaps and develop appropriate controls
• Ability to write both technical and business documents
• Remains current with industry trends and security threats to advice management on how to mitigate and contain risks to the business
• Advanced networking skills are required including WAN, Wireless, Firewall, VPN, Proxy and Intrusion Prevention
• Will be required to provide hands on Level 3 support or augment engineering staff as needed
Required skills/competencies:
• Must have leadership and/or senior team member experience
• Proven ability to collaborate with technical peers and management
• Technical and Business writing skills, plus the ability to effectively explain plans and solutions verbally to both IT and non-IT business units
• Perform in-depth security assessments of both business and IT driven solutions
• Understanding of emerging technologies in IT such as a Cloud Platforms and Mobile BYOD as well as the associated security risks
• Ability to conduct vulnerability assessments, analysis and create remediation plans
• Experience in dealing with APTs, DDoS, Targeted and Non-Targeted attacks
• Ability to use SIEM and event data to produce meaningful reports for addressing incidents
• Previous experience in Infrastructure Management and/or IT operations outside of Security
• Capable of working independently with minimal supervision
• Demonstrate a degree of creativity with strong analytical and problem solving skills
• 5+ years of experience in an Information Security role
• Previous experience within a large global organization
Preferred Skills:
Incident Handling
Security Operations
Vulnerability Management
Bachelor’s Degree Required
Required Certifications: CISSP required. CISA, CCNA and/or other industry recognized certifications are a plus
Travel: US Passport required, 25%
This position is responsible for understanding the IT enterprise architecture to identify security gaps, develop controls and design solutions that meet business objects while complying with security standards. Candidates must have a firm understanding of security concepts relating to all IT areas including Operating Systems (Windows, Linux, Unix), Networking, Database, Application/Web Development, etc. Individual will also be required to provide leadership and guidance to a team of engineers as well as Level 3 support as needed. An understanding of common compliance standards and regulations (e.g. PCI, SOX, HIPPA) is required. Individual must also possess the ability to translate said compliance requirements into policies, standards and guidelines that align with corporate strategy.
• Meet with project teams and other system architects to develop system designs and project plans that include the appropriate security controls and meet security standards
• Serve as the solutions architect for all IT Security sponsored projects and initiatives
• Must have a firm grasp of concepts and technology across all IT areas to be able to spot gaps and develop appropriate controls
• Ability to write both technical and business documents
• Remains current with industry trends and security threats to advice management on how to mitigate and contain risks to the business
• Advanced networking skills are required including WAN, Wireless, Firewall, VPN, Proxy and Intrusion Prevention
• Will be required to provide hands on Level 3 support or augment engineering staff as needed
Required skills/competencies:
• Must have leadership and/or senior team member experience
• Proven ability to collaborate with technical peers and management
• Technical and Business writing skills, plus the ability to effectively explain plans and solutions verbally to both IT and non-IT business units
• Perform in-depth security assessments of both business and IT driven solutions
• Understanding of emerging technologies in IT such as a Cloud Platforms and Mobile BYOD as well as the associated security risks
• Ability to conduct vulnerability assessments, analysis and create remediation plans
• Experience in dealing with APTs, DDoS, Targeted and Non-Targeted attacks
• Ability to use SIEM and event data to produce meaningful reports for addressing incidents
• Previous experience in Infrastructure Management and/or IT operations outside of Security
• Capable of working independently with minimal supervision
• Demonstrate a degree of creativity with strong analytical and problem solving skills
• 5+ years of experience in an Information Security role
• Previous experience within a large global organization
Preferred Skills:
Incident Handling
Security Operations
Vulnerability Management
Bachelor’s Degree Required
Required Certifications: CISSP required. CISA, CCNA and/or other industry recognized certifications are a plus
Travel: US Passport required, 25%