Assist in the development of security strategies and implementation roadmaps centered around a Zero-Trust philosophy
Design security architecture for Security Operations and integration with SIEM (both in-cloud/on-prem)
Develop and support key security solutions in the GRC, SOC, SIEM and IAM space
Understand complex modern and legacy integrations and business information models to ensure integrity and a strong security profile
Developing large enterprise solutions with respect to developing security controls, methods to mitigate security risks
Participate and lead conceptual, solution, and component-level architectures and associated artifacts
Support the evaluations of third-party suppliers, products and solutions with a focus on the security aspects of the solutions
Review, advise, and provide feedback on architectures produced within and outside the team
Develop reference architecture and reference implementation patterns related to security solutions
Participate in internal investigations and incident response events
Ability to influence security vendors to resolve issues and update roadmaps
Partner with other architects in IT, enterprise security and services teams in designing and maintaining modern and secure solutions
Research and evaluate impact of new vulnerabilities, security alerts and threat intelligence
Stay informed of new security technologies and solutions to assist in the on-going development of the overall security strategy
Build and maintain relationships with key customer's technical staff members and with internal stakeholders from IT, customer service and field operations
Promote a corporate culture that is committed to information security best practices
Participate in after-hours support as needed to respond to security incidents
Function with a high degree of integrity with an ability to keep information confidential
Be able to provide hands-on configuration and support for the projects and services you are involved in
Requirements
Minimum of 7+ years of relevant work experience related to cyber security
Experience and knowledge of security functions (AuthN, AuthZ, Transport Security, Secure Configuration, Data validation/sanitizations, security exceptions logging)
Knowledge of Vault capabilities and Security Incident and Event management systems
Experience with Threat modeling and secure testing methodologies
Experience with Cloud Native (12-Factor) Architecture and Infrastructure Patterns
Proficient across multiple operating systems such as Microsoft, Apple and Linux
Fundamental understanding of network protocols and network security concepts
Familiarity with Cloud (SaaS, IaaS, PaaS) environments and best practices for securing these environments with experience in Azure, AWS or GCP
Familiarity with incident response tools and digital forensics concepts preferred
Knowledge of industry frameworks such as NIST
Detail-oriented with strong conceptual, analytical, problem solving, decision making and planning skills
The ability to utilize application, scripting and operating system commands to configure, debug, and monitor large scale production systems
Knowledge of modern software development lifecycles, including Agile and iterative development
Excellent written and oral communication skills; and demonstrated ability to interact with technical, non-technical, and business members of the organization
Tech Stack
AWS
Azure
Cloud
Cyber Security
Google Cloud Platform
Linux
Vault
Benefits
Health insurance
Dental insurance
Mental health support
Vision coverage
Short
and long-term disability
Life and AD&D insurance coverage
Adoption/surrogacy benefits
Wellness programs
Employee/family assistance plans
Retirement savings plans (including pension and global share ownership plan with employer matching contributions)
Paid time off (holidays, vacation, personal, sick days, statutory leaves)