Job description

MINIMUM EDUCATION:Bachelor’s Degree or equivalent education in Computer Science, Information Systems, information Security or other Information Technology-related field.CISSP or CCSP certificationAdditional certifications (CISA, CISM)MINIMUM EXPERIENCE:7-10 years related experience in technical security architecture and engineering function, including hands-on experience in:Secure Systems architecture & designSecure application development practices, DevOps, & SDLCGDPR, CCPA, NIST 800-53, NIST 800-171, NIST CSF, OWASP, & PCI DSS ControlsSecure cloud architecture deployments, Azure & AWSAgile, waterfall, & hybrid project methodologyDemonstrable experience in architecture and engineering principles (e.g. SABSA, TOGAF)Demonstrated experience in implementing and managing at least 9 of the following security defenses:Web filtering technologyNetwork intrusion defense systemsIntrusion prevention systemsEndpoint monitoringData loss preventionPenetration testingFirewallsWAFVulnerability scanning toolsSecurity Information and Event ManagementNetwork tabs, traffic aggregators and filtersForensic investigations and relevant toolsPolicies, standards, procedures and other forms of documentationIdentity management tools, AD, LDAP, web front end and virtualizationApplication code vulnerability scanning (dynamic & static) and application securityCloud architecture, security controls, secure configuration, and deploymentUser security training and awarenessExpert-level knowledge of security principles and technologiesExperience with security automation and orchestrationExperience with CI/CD pipelines and secure DevOpsA sound understanding of emerging threats and industry trendsKNOWLEDGE, SKILLS, ABILITIESProvide technical security architecture guidance and oversight to ensure increased security architecture maturityArticulate issues, risks, and proposed solutions to various levels of staff and managementContribute to the development of the security strategy, policy and service delivery objectives and best- practices for the design and delivery of security architecture servicesDevelop processes, standards, guidelines and policies for the implementation and maintenance of security architecture principles within projectsManage multiple enterprise-wide programs simultaneouslyProficient knowledge of the organization’s mission, values and strategic goals to their workExpected to present information in writing, email, PowerPoint and other forms of documentation.Expected to work with employees from all areas of IT and maintain a good working relationship with them.Proficient with interacting with multiple levels and roles within the organization and shall have the ability to apply different strategies to convince others to change their opinions or plans.Regularly report to the Director Security architecture and CISO office using KPIs and other metrics to clearly reflect accomplishments and progress over timeDemonstrate process-oriented approach with high attention to detailExcellent critical-thinking and organizational skillsProficient interpersonal skills with the ability to interact professionally with all levels within the organizationAbility to work successfully with a diverse set of individuals and constituencies, and to be adept at advocating for, recommending and building consensus around suggested improvementsAbility to work creatively and analytically with others in a problem-solving environmentAbility to think both strategically and tactically in a high energy, fast paced environmentAbility to exercise sound judgement, problem solve, and make decisions in complex situationsAbility to communicate verbally and in writing within all areas and at all levels of the organization

Requirements