We are seeking an Information Security Architect to join our client for a full time engagement.
Delivers strategic thought leadership to the team that extends the Information Security strategy into the broader business, IT and Enterprise Architecture functions.
Defines and takes ownership of a multiyear roadmap detailing capability, coverage, maturity, and effectiveness model that is used to measure the progress toward a desired target state for security
Evaluate and monitor emerging security architectural trends in the industry and develop a robust reporting methodology for delivering the results of this analysis to Management
Evaluate, analyze, and provide direction on the current domestic and international enterprise Information Security Infrastructure to ensure security best practices are implemented and identify areas for improvement
Evaluates the current state and provides future state cloud security reference architecture. Architects friction-less preventative and detective security controls to be built into multi-cloud environments for Azure and AWS and works to provide guidance on continuous improvement
Provides Cybersecurity integration and automation architectures for the next gen cloud native security stack that is identity and API driven. Provides guidance on reducing/mitigating the attack surface on the identity stack and designing for Zero-Trust Identity Protections
Leverages threat intelligence for strategic architectural decisions to recommend security enhancement projects to improve the posture of the organization. Utilizes threat models and countermeasures to prioritize risk remediation and security enhancements
In depth understanding of vulnerability management best security practices for Mobile, App, and Infrastructure security and embedding of toolsets within a Continuous Integration/Continuous Delivery (CI/CD) pipeline
Evaluate the current state and develop secure reference architectures and/or patterns for company applications, DevSecOps (CI/CD) for containerized and virtualized systems, infrastructural components, and application and system patching and hardening capabilities
For ongoing cloud, network, system, application and telephony projects, work with the respective technology teams to design a robust, reliable, and integrated IT security architecture covering the entire enterprise and addressing issues as prioritized by Information Security
Build security reference architectures and patterns that can be implemented by engineering teams to address common security threats
Maintain and update the security model, technologies and standards for system architects and designers
Provide Security Architecture design services to portfolio teams during their engagement within the established solutions development lifecycle (SDLC)
Review and contribute to the incident management process to provide architectural solutions to address root cause of incidents
8+ years’ experience in the information security industry or demonstrable experience as an Information Security Architect
Microsoft Azure and/or Amazon Web Services (AWS)
Proven experience with cloud security in AWS/Azure/, application/API security, firewalls, IDS/IPS, sandboxing, threat intelligence, vulnerability assessment and mitigation, SIEM, auditing, encryption, data loss prevention, threat intelligence, SASE, Zero-trust network access solutions, mobile application/system security
Experience driving measurable improvement in monitoring and response capabilities at scale.