Security Architect

Description

Responsibilities Designing Security Solutions o Work closely with the Information Security and Security Engineering teams to research and document conceptual and logical solution architecture options based on analysis of key requirements, incorporating feedback from others as necessary.o Prepare architecture points of view and recommendations for security technologies, which includes socializing with peers and presenting to architecture review boards as well as other stakeholder approval bodies.Security Architecture Guidance o Provide design recommendations concerning security best practices to other architects, application development teams and infrastructure teams. This includes applying reference architecture standards in consulting engagements and on projects, harvesting best practices and reference implementations for future use.o Integrate security requirements into the System Development Life Cycle and contribute to multiple large, complex application projects with cross functional teams and business users. o Ability to articulate the risk tradeoffs between different solution options.Setting Security Strategy o Participate in research initiatives on future industry trends to determine their appropriateness for CG's security environment and influence decisionmaking across multiple technology areas.o Participate in the creation of security roadmaps, capability models, and blueprints in support of strategic IT planning.o Support the business to understand their needs and assist in planning/decision making, explaining architecture, technology options, business relevance, and value of initiatives. Qualifications 510 years of experience in an IT architecture or information security related job function.Experience with the technology and process aspects of enterprisewide identity management solutions including user provisioning, access request & review, federation, single signon, Active Directory/LDAP, and privileged account management. Technical understanding of cybersecurity technologies to monitor and protect enterprise environments. This would include technologies such as SIEM, DLP, Advanced Endpoint Protection, and Next Generation Firewalls.Experience working with, and understanding the security considerations for PaaS and IaaS cloud platforms such as AWS, Azure, GCP.Technical understanding of network security design including remote access, WAN security, Firewalls, IDS/IPS, NAC, Content Filtering and authentication systems.Basic understanding of common penetration tools and methods.Development experience with a language such as Java, JavaScript, C#, or Python.Knowledgeable on the current landscape of security products available in the market as well as current technology trends and security vulnerabilities.Proficiency in productivity applications such as MS Word, PowerPoint, Excel, Visio, etc.Understanding of development and project management processes, methodologies and key deliverablesStrong verbal and written communication skillsAbility to influence teams and stakeholders through collaboration, communication and project deliverablesCISSP certification preferred