Vacancy expired!
Job Description
Job Title: Security Architect, Associate Director Risk ManagementLocation: Tampa, FL or Dallas, TX preferred or Boston or NYC/NJStatus: Full-timeOur client, a global leading in the Financial Services industry, is looking to add a Security Architect/Associate Director of Risk Management to their team. You can office onsite in Tampa, FL or N. Dallas, TX preferred. Other options are Boston or the NYC/NJ area (near Manhattan). The Technology Risk Management department is responsible for setting strategic direction in the areas of IT Risk and Information Security. They are accountable for maintaining corporate security policies and control standards and acting as an operational arm for monitoring threat intelligence. The client is looking for a passionate leader with a strong desire to learn and experiment with new technologies. The incumbent will be responsible for providing highly advanced technical and analytical skills to the Technology Risk (TR), and Information Security departments in collaboration with senior security architects. Under the supervision of the Director of the Security Technology Team, the incumbent will assist in the development and assessment in the areas of cloud security architectures, designs, policies, and control standards with a special emphasis on Amazon Web Services (AWS) and Microsoft Azure. You will work with other senior system and application architects to contribute to the technical quality of advanced security focused deliverables and adherence to security standards, governance, and controls practices. Incumbent should be considered a security and technical expert in cloud and Distributed Ledger Technology (DLT) security technology, architecture, designs, systems implementation, and integration, with specialized knowledge of AWS, Azure, and multiple block chain protocol and networks. Conducts technical research when necessary to contribute to setting corporate security direction and strategy. As this employer supports the financial services industry, you must be able to successfully pass a strenuous criminal and financial background check process. You should have experience working in a large corporate environment. FinServ experience would be very helpful to understand the regulatory aspects of the job. Candidates must be US Citizens or authorized to work for any US based company without sponsorship. Qualifications:- Deep knowledge and experience of cloud computing infrastructure, application development methodologies, best practices, and available and emergent services in several cloud provider environments including Amazon Web Services (AWS) and Microsoft Azure
- Knowledge of various blockchain networks, token protocols, consensus algorithms, public and private key cryptography, symmetric, hash functions, encryption/signatures
- Proven knowledge of technical infrastructure, networks, databases, and systems and how they affect an organization's cybersecurity risk
- Proven knowledge of security methodologies, policies, standards, and best practices
- Proven knowledge of information technology systems, infrastructure, and operations
- Ability to explain and articulate technical concepts using both technical and non-technical language
- Critical thinking and analytical skills
- Ability to work collaboratively by building consensus and influencing decision making to foster forward progress with projects and initiatives
- Strong oral and written communication skills
- Excellent organizational skills, coupled with ability to be versatile and flexible
- Sound business judgment and the ability to work successfully with all levels of management
- Excellent grammar and style skills; ability to adapt writing style for different audiences and media
- Minimum of 5 years of related experience
- Bachelor's degree required
- Provides Cloud Security expert level advice and guidance related to all corporate activities including Information as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS) initiatives, projects, plans, and reviews with a specialized focus on Amazon Web Services (AWS)
- Conduct detailed risk and security assessments for Distributed Ledger Technology (DLT) solutions in scope to determine the feasibility of successful implementation
- Engage with technical teams in education /advocacy of security for proposed DLT solutions. Ensure the proposed DLT solutions meets the corporate security controls and policy standards in creating & operating the applications
- Works cross functionally to evolve DLT and cloud based CORPORATE products while adhering to Corporate's Information Security Policies and Control Standards
- Provides leading edge security guidance and assistance to development teams using the concepts of DevSecOps
- Assists project teams during system design and project lifecycle to: define time tables and project plans, including milestone definitions and progress tracking; draft logical architectural and design models with a focus on cloud security; Consults with application development teams to assist in determining cloud security requirements and for planning and delivering cloud based business solutions; promote the efficient deployment of IT assets to cloud environments in a secure and policy compliant manner, ensures compliance with security policies, guidelines, standards, controls, and governance
- Participates in working groups of subject matter experts for definition and review of security standards, guidelines, principles, governance, and controls
- Actively contributes senior information security architectural advice to TR members, cross-functional application development teams, various councils and committees and architecture roundtable meetings
- Works closely with multiple senior security architects to ensure a shared vision across corporate environment for cloud architecture and security
- Contributes to overall strategy and cloud development by designing, developing, and implementing new cloud security technologies as necessary to support the corporation's business and solutions
- Contributes to and maintains processes for security governance (i.e., compliance to principles, guidelines, and standards)
- Coordinates the monitoring of the life cycle of specific cloud security assets
- Identifies, understands, and documents extensions to, and variants from, cloud security and architecture standards
- Mitigates risk by following established procedures, spotting key errors, and demonstrating strong ethical behavior
Vacancy expired!