security architect

Location: waltham, MA
Date Posted: 09-19-2018
Title: security architect
Location – Waltham, MA
Duration- 6+ months
 
Interviews – if local, must do an onsite interview. IF not local skype is OK
 
Job Description:
 
 
Job Purpose:

The Security Architect serves as a security lead/visionary and will act as an expert in many areas of security, and can describe in business terms the impact of security policies, standards, and architecture on the business. This person will provide security direction to the cyber security programme based on their security and business focus areas.

The Security Architect must be able to interpret high level business requirements and communicate them to highly technical security engineers; conversely, they must also be able to articulate highly technical issues to a non-technical business audience.

The Security Architect is to produce reference architectures and to ensure that the delivered architecture is fit for purpose and effective when transitioned in to service. The Security Architect will manage a team of Security Engineers.

Primary Roles & Responsibilities:

Providing an architectural steer to the program, as required, on security related matters.

o This includes formal input to projects during the analysis and design stages to ensure that security has been considered and is appropriate.

o Further security related guidance may be required during the build and testing stages of the projects.

o Provide technical security input as required by the security policy development team.

o Security review and design of complex application and technology architectures.

o Coordination of technical design/review activities with various segment and corporate groups.

o Evaluation and maintenance of systems and procedures to safeguard internal information systems and databases.

o Researching and recommendation/implementation of changes to procedures and systems to enhance security aligned with corporate policies

o Representing the Security Architecture team within Digital Risk and Security, being an authority.

o Accountable for ensuring that key risks and issues are identified, addressed and resolved in a manner that satisfies the business.

o Accountable for ensuring residual risk is captured and owners are identified and accept the risks.

o Continuous view toward standardization and process improvement with a view toward automation where possible

o Flexibility to occasionally travel as role requires (may include global responsibilities)

Knowledge and Capabilities:

Security Services

o Experience with cloud based security controls (secure web gateway, next gen firewall, cloud access security broker)

o Strong knowledge and experience designing and implementing technical security solutions such as IDS/IPS, secure remote access, firewalls, encryption, secure protocols, data protection, data loss prevention and identity management solutions.

o Strong background in security architecture including a deep knowledge of IT network security (secure LAN, WAN, vLAN, MPLS, Netflow, SNMP and secure network zoning and restricted network design) and database, operating system and application security.

o Strong knowledge of data and information flows, information governance, network protocols.

o Experience of security hardening techniques and policy development, particularly operating system hardening (e.g. Windows, UNIX, Oracle).

o Experience in integration with a SIEM, or working within a system monitoring environment.

o Experience in vulnerability and risk management processes.

o Familiar with scripting including Powershell, Python, Perl etc.

Project Engagement

o Experience of incorporating security controls at each stage of the software development lifecycle process (ITIL).

o Experience of designing and managing security controls within service providers and the cloud.

o Proven track record of successfully delivering business requirements to time and budget constraints.

o Familiar with contract management, ensuring security controls are referenced within the agreement.

Security Architecture

o Appreciation of wider information security related principles, likely to be gained in industry or from a consultancy background.

o Familiar with TOGAF and SABSA.

o Skilled in creating patterns and reference architectures ensuring alignment with and support of other domain areas

o Experience with presenting architecture designs/models to the security and/or enterprise governance boards for acceptance and approval.

Collaborative Working

o Strong communication (Written and Verbal), leadership and partnering skills.

o Able to demonstrate a high degree of credibility and influence senior stakeholders within the Organization.

o Prepared to challenge the program and IS colleagues and have the difficult conversations where needed in the interests of National Grid

o Able to operate as a highly independent worker and as part of a strong team/collaborative approach.

Prior Critical National Infrastructure (CNI) and utility industry experience preferred.

Preferably somebody who has done hands on IT in the past and understands the pragmatic approach sometimes required.

Qualification Requirements:

Educated to degree level (or equivalent combination of education and experience).

Information Security Qualifications such as CISSP and MSc Information Security preferred.

Security Qualifications such as SANs, CCNA, CCNP.

Job Dimensions:

This role has a significant impact on defining security requirements and ensuring that the program meets these requirements, or that exceptions and issues are noted and remediated as appropriate.

Indirect support (influence) of budget across the entire IS organisation and specific set of Business Systems (e.g. Customer Systems, Corporate Systems, etc. specific to project/s design.

No. of direct reports A small team 3-5 in time of Security Engineers.
or
this job portal is powered by CATS