Vacancy expired!
- Join the Device Security team and make a positive impact to Client's customers.
- Device Security is at the forefront of cyber security as the device plays a major role in many Client's products and services.
- This position is for a Principal Security Architect working in our Device Security processes and risk management.
- This entails enforcing product security activities (i.e. Threat Assessments, Risk Management, Security testing, etc.) to both Client consumer and business products while attending to operational security duties (i.e. patch management, etc.). Moreover, security professionals in the Device Security team are provided with opportunities to support many Client Products and Services as subject matter experts (SMEs) in any relevant technology. For example, opportunities for performing Red-team activities such as PEN testing.
- Enforcement of security processes and activities across device product portfolios
- Support operational security activities such as security audits
- Drive the closure of security vulnerability findings across device product portfolios
- Lead the establishment of corporate and best of industry security requirements and policy across device product portfolios
- Lead hands-on investigations into device vulnerabilities, access risks and inform upper management.
- Candidates have strong knowledge of security principles and best industry practices (hands on experience on smartphones and routers is a plus).
- Candidates have good command of different security controls such as authentication, TLS, encryption and PKI as these are commonly applied to products and services.
- Experiences on defining and applying security activities, for example BSIMM security activities.
- Bachelor's degree or four years of work experience
- Six or more years of relevant work experience
- Bachelors in Computer Science, Computer Engineering, Electrical Engineering, Information Security Technology or relevant
- Six or more years of experience in software engineering and product life cycle
- Six or more years of experience in information security, fields of data encryption, networking, identity and authentication
- Experience in architecture, design and implementation of systems
- Experience in vendor management for the purpose of security testing
- Experience with Product Security Processes
- Experience in security risk management while considering business drivers and implications
- Excellent written and verbal skills for communicating security concepts and solution
- Ability to work with very little supervision, self-manage goals and objectives
- Ability to prioritize between and execute on multiple work streams
- Excellent organizational and interpersonal skills
- Have one or more of the following certifications: CISSP, CSSLP and CCSP
- Familiar with one or more of the following programming languages: C, Java, C#, shell script, Python, Javascript, PowerShell, and PHP
- Familiar with modern computer operating systems (Unix, Linux, Windows) and major mobile platforms (Android, iOS)
Vacancy expired!