Job Searchi - jobSearchi.com

Job Details

ID #21631000
State Pennsylvania
City Philadelphia
Job type Contract
Salary USD TBD TBD
Source Amtex System Inc.
Showed 2021-10-24
Date 2021-10-24
Deadline 2021-12-22
Category Security
Create resume

Azure Cloud Cybersecurity Architect

Pennsylvania, Philadelphia, 19019 Philadelphia USA

Vacancy expired!

Amtex Systems Inc is an information technology and talent solutions company offering talent and BI consulting to the companies in US for over 20 years. Our solutions are designed to fill resource gaps, by providing the right candidates who deliver value to the organization. Our propensity to nurture and build strong relationships with our clients helps us better understand their business demands and gives us the ability to provide services that are on time and rise above the rest. Cyber Security Architect Keys:

  • Microsoft Cloud security services including AAD, MCAS, ATP, Mobile Security and Azure Security
  • O365, Azure AD, Azure Stack
  • Information security management frameworks, such as ISO 2700X and NIST
  • Interface with our contractors on the team
Our customer is seeking an Azure Cloud Cybersecurity Architect for a contracting role with their organization. The Azure Cloud Cybersecurity architect plays an integral role in defining and assessing our customer's security strategy, architecture, and practices. The role will provide information security direction, consultation, design and architectural advice and lead enterprise-wide security initiatives to ensure sustained and reliable security controls. The cybersecurity architect advocates for security requirements and objectives while ensuring that security architectures and practices do not impede the needs of the business. Specifically, the security architect will serve as a technical sounding board for interaction with other line-of-business (LOB) in the organization. The Cybersecurity Architect will be expected to evaluate new services, vendors, applications, and security tools from a technical perspective, and to determine the risk characteristics of these activities and functions. Responsibilities
  • Develop a complete understanding of our customer's technology and information systems.
  • Delivering in collaboration with Product Teams and Cybersecurity Teams the adoption of Microsoft Cloud based security services and capabilities.
  • Experience in architecting and designing technical solutions leveraging Microsoft Azure IaaS, PaaS, and SaaS capabilities.
  • Knowledge of authentication (SAML/OAuth/OIDC), MFA, and RBAC. Align organizational security strategy and infrastructure with overall business and technology strategy.
  • Interact with third party MSSP on Azure environment and work on improving security posture and mitigate threats and vulnerabilities.
  • Identify and communicate current and emerging security threats.
  • Design security architecture elements to mitigate threats as they emerge.
  • Develop and maintain security architecture artifacts (e.g., models, templates, standards, and procedures) that can be used to leverage security capabilities in projects and operations.
  • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.
  • Determine baseline security configuration standards for operating systems and network segmentation.
  • Develops standards and practices for data encryption and tokenization in the organization.
  • Perform vulnerability testing, risk analyses and security assessments.
  • Create solutions that balance business requirements with information and cybersecurity requirements.
  • Validates IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable.
  • Validates security configurations and access to security infrastructure tools, including, firewalls, IDS/IPS, WAFs and anti-malware/endpoint protection systems.
  • Conducts or facilitate threat modeling of services and applications that tie to the risk and data associated with the service or application.
  • Ensures a complete, accurate and valid inventory of all systems, infrastructure and applications that should be logged by the security information and event management (SIEM) or log management tool.
  • Coordinates with the compliance manager to document data flows of sensitive information in the organization.
  • Reviews network segmentation to ensure least privilege for network access.
  • Supports the testing and validation of internal security controls, as directed by the Director of Security and Compliance or the internal audit team.
  • Coordinates with operational and facility management teams to assess the security of operational technology (OT) and Internet of Things (IoT) systems.
  • Test security systems to ensure they behave as expected.
  • Use current programming language and technologies to writes code, complete programming and performs testing and debugging of applications.
  • Provide supervision and guidance to the security team.
  • Define, implement, and maintain corporate security policies and procedures.
  • Train users in implementation or conversion of systems.
  • Respond immediately to security-related incidents and provide thorough remedial solutions and analysis.
  • Liaises with the vendor management team to conduct security assessments of existing and prospective vendors.
  • Regularly communicate vital information, security needs and priorities to upper management.
Required and Preferred Knowledge, Skills, and Abilities:
  • Minimum Education required - Bachelor's degree in Information Systems or equivalent experience required.
  • Minimum Experience required 5-7 years of IT security and cloud experience.
  • Recent and practical experience of implementing Microsoft Cloud security services including AAD, MCAS, ATP, Mobile Security and Azure Security.
  • Experience with the following: Microsoft O365, Microsoft Azure Stack, Microsoft Azure AD.
  • Knowledge of cloud security controls including tenant isolation, encryption at rest, encryption in transit, key management, vulnerability assessments, application firewalls, SIEM, etc.
  • Professional Qualification such as Microsoft and CISSP preferred.
  • Experience with common information security management frameworks, such as ISO 2700X and NIST.
  • Demonstrated ability leading security-based project.
  • Must have technical competency in IT/Systems, combined with business acumen to understand and translate between business and technical requirements.
  • Experience and strong understanding of security tools/technologies and working with legal, audit and compliance staff.
  • Able to support multiple efforts in parallel, in a highly matrix, fast-paced, multi-site organization experiencing rapid growth.
  • Experience in system technology security testing (vulnerability scanning and penetration testing) and familiarity with applicable legal and regulatory requirements (SOX, CCPA, PCI DSS)
  • Proficient in performing risk, business impact, control, and vulnerability assessments, and in defining treatment strategies.
  • An understanding of operating system internals and network protocols with familiarity of the principles of cryptography and cryptanalysis.
  • Experience in developing and documenting security architecture, policies, procedures, standards, guidelines, and plans, including strategic, tactical and project plans.
  • Strong interpersonal skills required, with a positive approach to collaboration and relationship building.
  • Must have excellent written and verbal communication skills.
  • Strong analytical, organizational, and demonstrated problem solving and conflict resolution skills.
  • Must be a self-starter with an attitude to "get things done" and an excellent understanding of information security concepts, protocols, industry best practices and strategies.
  • Minimum travel required to various operating locations along with business-related meetings & conferences.
Systems Experience:
  • Microsoft Azure Architecture and Security
  • Multifactor Authentication
  • Single Sign On
  • Cloud Access Security Broker
  • ZeroTrust/Conditional Access
  • Network segmentation design
  • Privileged Access Management Solutions
  • Python/Powershell/JavaScript/Scripting
  • Data Loss Prevention
  • Security Incident Event Management

Vacancy expired!

Subscribe Report job