DESCRIPTION
The Principle Security Architect is responsible for developing enterprise information security architecture standards and security architecture for applications hosted on various Cloud environments. This person will be responsible to develop and enforce Cloud Security standards, roadmaps, and governance across the Enterprise. The Security Architect collaborates within the information technology teams and throughout the business to develop and maintain technology roadmap components to optimize security architecture processes. The Principle Security Architect is expected to demonstrate expertise to execute strategic direction as well as technical expertise in overall information security architecture, Infrastructure security architecture, Application and Data security architecture, and Governance Risk and Compliance areas. The role requires strong technical knowledge and hands-on experience in security requirements analysis, security architecture, security operations and maintenance.
Qualifications
What we look for:
Demonstrated experience at a senior level (architecture, development, other technical competency) over at least 7 years in an enterprise environment.
Significant experience in defining enterprise cloud computing strategy, adoption roadmaps and implementing them to support dynamic business environment.
This position requires an innovator who can drive an Enterprise Strategy for adopting cloud computing technologies, architecting and building an agile, technically demanding highly available, scalable, secure, and fast Web application. Looking for someone already showing success in a functional or technical architecture role ready to use deep hands-on engineering expertise to move into an architecture leadership and strategy role.
Extensive knowledge of cloud architectures, development and deployment (Eg. AWS, Azure, Hadoop, SalesForce).
Extensive knowledge on Hybrid Cloud Management, Private Cloud implementations, Cloud Integrations and Cloud Brokerage
Extensive knowledge in Data Center technologies, Networks and Security
Experience in Internet application development experience on client side (e.g. JQuery, HTML5, CSS3), server side (e.g. Java, JSP, PHP, Node.js), API, web services/SOA and Mobile Application/Web development.
Ability to articulate the relationship between business strategy and technology
Strong communication skills (written / verbal) with technical and non-technical audiences. Able to bridge the communications between hands-on technical and executive level.
Minimum 8-10 years related work experience Responsibilities
What you will do:
Serve as expert across security functional areas, which include Infrastructure Security [Public and Private Cloud Environments], Application and Data Security, Security Operations, Governance, Risk and Compliance.
Provide Expertise in Cloud Service and Deployment models, Security Threats related to cloud hosted infrastructure and applications, Security Architectures and implementations on public and private cloud platforms.
Partner with multiple projects and initiatives to apply security architecture requirements, develop solutions, integrate security into solution designs, access risks of security gaps, and develop architecture remediation
Review and Validate implementations against approved architecture and design.
Regularly Audit Cloud Environments and provide guidance to teams to address security issues identified.
Develop and enforce Information security architecture standards across the enterprise
Identify risks associated with Key Enterprise Applications/ Assets and communicate the same to stakeholders.
Provide expertise and guidance to the teams to meet Regulatory and Compliance requirements [PCI-DSS, CPNI, SOX, PII etc.]
Define Requirements,
Develop and maintain architecture for IT security tools and services:
Reference security architectures for different enterprise workloads to host on Cloud environments. Network Intrusion Detection and Prevention [NIDS/NIPS] Host Intrusion Detection and Prevention [HIPS/HIDS]
Network Firewalls
Anti-Virus Application security architecture
Application Firewalls
Data Security
Cryptography
Secure Application Development processes
Application Threat Modeling
Identify and Access management [IDAM]
Role based Access Control [RBAC]
Security Scans [Static and Dynamic]
Remediation Plans Governance Risk and Compliance [GRC]
Security Audits
Regulatory and Compliance requirements [PCI-DSS, CPNI, SOX, PII etc.]
Ability to represent and contribute in external industry bodies working on Cloud Security policies and Standards [ex Cloud Security Alliance [CSA]]
Keeping up to date on the emerging security trends conducts proof of concepts and define & apply controls proactively to Key enterprise assets.
Ability to work well under minimal supervision.
Coaching / mentoring other team members.
**** Bonus Eligible: yes 15%
COMPENSATION
Base Salary - DOE
Benefits - Full
Relocation Assistance Available - Yes
Commission Compensation - No
Bonus Eligible - Yes
Overtime Eligible - No
Interview Travel Reimbursed - Yes
CANDIDATE DETAILS
7+ to 10 years experience
Management Experience Required - No
Minimum Education - Bachelor's Degree
Willingness to Travel - Occasionally
ADDITIONAL DETAILS
Location: Bellevue
Industry: Information Technology - Internet / E-Commerce
Job Category: Information Technology - Security
Hours Per Week:
Visa Candidate Considered: Yes
•
Last updated on Mar 16, 2016