Vacancy expired!
Within the Technology Risk Management (Information Security) office, the Security Architect is an authority with strong desire to learn and experiment with new technologies. This candidate will be responsible for providing highly sophisticated technical and analytical skills to the Technology Risk (TR), Information Security. Under the supervision of the Director of the Security Technology Team, this position will assist in the development and assessment in the areas of cloud security architectures, designs, policies, and control standards with a special emphasis on Amazon Web Services (AWS) and Microsoft Azure. Works with other senior system and application architects to ensure technical quality of sophisticated security focused work and alignment to security standards, governance, and controls practices. Incumbent should be considered a security and technical specialist in cloud and Distributed Ledger Technology (DLT) security technology, architecture, designs, systems implementation, and integration, with deep, niche knowledge of AWS, Azure, and multiple block chain protocol and networks. Conducts technical research when vital to supply to setting corporate security direction and strategy.Job Description:
- Provides Cloud Security master level advice and mentorship related to all activities including Information as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS) initiatives, projects, plans, and reviews with a niche focus on Amazon Web Services (AWS)
- Conduct detailed risk and security assessments for DLT solutions in scope to resolve feasibility of successful implementation
- Provides cutting edge security mentorship and assistance to development teams using the concepts of DevSecOps
- Actively gives senior information security architectural advice to TR members, multi-functional application development teams, various councils and committees and architecture roundtable meetings
- Defines, publishes, and maintains processes for security governance (i.e., compliance to principles, guidelines, and standards)
- Deep knowledge and experience of cloud computing infrastructure, application development methodologies, best approach, and available and emergent services in several cloud provider environments including Amazon Web Services (AWS) and Microsoft Azure
- Knowledge of various blockchain networks, token protocols, consensus algorithms, public and private key cryptography, symmetric, hash functions, encryption/signatures
- Shown knowledge of technical infrastructure, networks, databases, and systems and how they affect an organization’s cybersecurity risk
- Confirmed knowledge of information technology systems, infrastructure, and operations
- Experience using cryptography material such as certificates for identity management to authenticate members, transactions etc.
- Experience with Docker, Kubernetes, and other container orchestration solutions.
- 3 or more years of hands-on experience with one or more blockchain platforms: R3 Corda, Hyperledger Fabric, DAML, Enterprise Ethereum, Hyperledger Besu
- 5 - 7 years of risk assessment experience in one or more areas: application, infrastructure, vendor risk management
- Minimum of 10 years of related experience
- Bachelor's degree required with master’s preferred.
Vacancy expired!