Lead Security Architect

About The Position

Requirements

• Bachelor's Degree preferred, Master's Degree a plus.
• CISSP or other security certifications are a plus.
• Minimum of 10+ years of relevant work experience related to cyber security.
• Experience as a Security Architect is a must.
• Experience and knowledge of security functions (AuthN, AuthZ, Transport Security, Secure Configuration, Data validation/sanitizations, security exceptions logging).
• Knowledge of Vault capabilities and Security Incident and Event management systems.
• Experience with Threat modeling and secure testing methodologies.
• Experience with Cloud Native (12-Factor) Architecture and Infrastructure Patterns.
• Solution architecture support for all segment initiatives from end-to-end security perspective.
• Security architecture roadmap and maturity for the segment - current state to target state.
• Contribution to security best practices, patterns, principles for the segment and represent the same in global communities.
• Proficient across multiple operating systems such as Microsoft, Apple and Linux.
• Fundamental understanding of network protocols and network security concepts.
• Familiarity with Cloud (SaaS, IaaS, PaaS) environments and best practices for securing these environments with experience in Azure, AWS or GCP.
• Familiarity with incident response tools and digital forensics concepts preferred.
• Knowledge of industry frameworks such as NIST.
• Strong knowledge and experience with devSecOps principles, patterns.
• Detail-oriented with strong conceptual, analytical, problem solving, decision making and planning skills.
• Ability to utilize application, scripting and operating system commands to configure, debug, and monitor large scale production systems.
• Knowledge of modern software development lifecycles, including Agile and iterative development.
• Excellent written and oral communication skills; and demonstrated ability to interact with technical, non-technical, and business members of the organization.
• Ability to accurately interpret business direction and clarify technology's alignment with stakeholder needs.

Responsibilities

• Assist in the development of security strategies and implementation roadmaps centered around a Zero-Trust philosophy.
• Design security architecture for Security Operations and integration with SIEM (both in-cloud/on-prem).
• Develop and support key security solutions in the GRC, SOC, SIEM and IAM space.
• Partner with segment security office to define and lead related standards, patterns and drive implementation through processes and automation.
• Understand complex modern and legacy integrations and business information models to ensure integrity and a strong security profile.
• Develop large enterprise solutions with respect to developing security controls, methods to mitigate security risks.
• Participate and lead conceptual, solution, and component-level architectures and associated artifacts.
• Support the evaluations of third-party suppliers, products and solutions with a focus on the security aspects of the solutions.
• Review, advise, and provide feedback on architectures produced within and outside the team.
• Provide consultation and guidance to aligning to global security standards, guidelines, and patterns.
• Develop reference architecture and reference implementation patterns related to security solutions.
• Participate in internal investigations and incident response events.
• Ability to influence security vendors to resolve issues and update roadmaps.
• Partner with other architects in IT, enterprise security and services teams in designing and maintaining modern and secure solutions.
• Research and evaluate impact of new vulnerabilities, security alerts and threat intelligence.
• Stay informed of new security technologies and solutions to assist in the ongoing development of the overall security strategy.
• Build and maintain relationships with key customer's technical staff members and with internal stakeholders from IT, customer service and field operations.
• Promote a corporate culture that is committed to information security best practices.
• Function with a high degree of integrity with an ability to keep information confidential.
• Provide hands-on configuration and support for the projects and services you are involved in.
• Participate in after-hours support as needed to respond to security incidents.

Benefits

• Health insurance coverage
• Dental insurance coverage
• Mental health support
• Vision insurance coverage
• Short- and long-term disability insurance
• Life and AD&D insurance coverage
• Adoption/surrogacy benefits
• Wellness benefits
• Employee/family assistance plans
• Retirement savings plans (including pension/401(k) savings plans)
• Global share ownership plan with employer matching contributions
• Generous paid time off program including up to 11 paid holidays, 3 personal days, 150 hours of vacation, and 40 hours of sick time.