Information Security Architect

Company: Hybrid Pathways
Location: New Brunswick
Posted on: May 13, 2022

Job Description:

About the Opportunity:

Hybrid Pathways is currently looking for an experienced Information Security Architect for our client. Our client requires an experienced security architect with a background in global, complex environments to develop control design patterns, develop, and deploy target state security solutions. This is a 6-month remote project, 20 hours a week, or we can hire a full-time candidate.

Responsibilities:

• Document current state tools, component & functional data flows, process controls to support Information Security & Risk Management (ISRM) Security Architecture
• Document target capability (reference) and solution architectures for the for the security technology portfolio including use case definition, threat modeling and findings & recommendations for security architecture capability gaps
• Design, implement and support various on-premise or off-premise cloud security solutions/technologies with a specific focus on Amazon Web Services (AWS), Azure, GCP, other cloud offerings
• Design technical solutions for Identity and Access Management, API Security, Logging and Monitoring, Network and Endpoint Security and Key Management
• Create Product Roadmaps as needed
• Complete Tools Rationalization and marketplace evaluation recommendations
• Remediate risk by designing, engineering, and implementing controls defined by risk assessment findings
• Run enterprise projects for IT Security and evaluate various proof-of-concept initiatives
• Facilitate interviews, conduct analysis, and provide status updates and readouts
• Interface with various teams such as management, architecture, applications development, engineering, deployment, and operations on a regular basis
• Draft technical designs, system deployment plans, new processes and procedures, technical risk remediation efforts and support documentation
• Work with architecture and engineering resources to research, evaluate, and select technologies/solutions based upon business needs and current standards
  
  Required Skills:
  
  • 7+ years of experience in the information security space in an architecture and engineering capacity.
  • 5+ years of demonstrated security experience in a combination of technical engineering, architect, leads, or enterprise engineering roles
  • 2 + years of demonstrated experience in cloud security (experience with AWS or Azure IaaS cloud desired) including but not limited to IAM, Secrets Management, Key Management, Certificate Management, Intrusion Prevention Systems, Logging and Monitoring, Configuration Management Security, Scripting Security, API Security, etc.
  • 3 + years of demonstrated experience in network security
  • Ability to interact with IT, application, and business stakeholders to communicate proper security practices.
  • Experience with current and emerging IT risks and experience implementing security solutions.
  • Experience developing information security architecture patterns including with Public Cloud platforms such as AWS, Azure and Google Cloud.
  • Strong understanding of information security capabilities including:
  • PKI/Cryptography
  • Authentication
  • Authorization
  • Vulnerability and configuration management
  • Multi-factor authentication, single sign-on, identity & access management, B2B/B2C federation.
  • Modern authentication (including password-less)
  • DevSecOps
  • Identity and Access Management
  • Federation and Single Sign-On (e.g., SAML, OAuth)
  • Directory Services Authentication Protocols (e.g., LDAPS, Kerberos, etc.)
  • API Security including API Gateway Security
  • User and Entity Behavioral Analytics
  • Reverse proxy architecture and third-party authentication architecture
  • Understanding of industry and leading practices including industry standards such as the National Institute for Standards and Technology (NIST) Special Publication (SP) 800-63 and NIST Cybersecurity Framework (CSF)
  • Experience with major IAM platforms such as:
  • Microsoft Active Directory
  • One Identity Manager
  • Ping Federate
  • IDS/IPS
  • NGFW
  • Packet Aggregation Technology (Network Packet Broker)
  • SSL decryption technology and PKI
  • Wireless Security
  • Web application firewalls and proxies
  • Endpoint security
  • Software defined networking security and micro segmentation
  • Experience with B2C Customer Identity Access Management for Voice including but not limited to Authentication and Authorization (Call Center, IVR, IOT, Mobile, Web, etc.)
  • Experience working with Enterprise Architecture standards and processes
  • Experience with regulatory requirements such as PCI, GLBA, HIPAA and SOX
  • Proven experience with creation of technical diagrams and documentation
  • Experience with threat modeling
  • Excellent written and verbal communication skills
  • Ability to work as liaison between business and information security/information technology
  • Flexibility to accommodate working across different time zones.
    
    Preferred Skills:
    
    • Python scripting
    • SIEM and Data Analytics
    • Email Security
    • DLP
    • Mobile Security
    • Virtualization Security
    • Cloud Orchestration Security
    • Encryption
    • Privilege Access Management
    • Threat modeling (e.g., using MITRE's ATT&CK threat framework)
    • Customer authentication and anti-fraud control design
    • Excellent interpersonal communication skills with strong spoken and written English.
    • Organized with attention to detail.
    • Business outcomes mindset.
    • Solid balance of strategic thinking with detail orientation.
    • Collaborative team worker - both in person and virtually using MS Teams or similar.
    • CISSP, CISM, or equivalent certification a plus.
      
      Required Education:
      
      • Bachelor's degree or equivalent experience in Computer Science
        
        Preferred Education:
        
        • Cybersecurity certifications such as CISSP, CISM, etc.
          
          About Us:
          
          Hybrid Pathways is a New England-based IT professional services company that assists mid-to-large enterprises with the implementation of secure IT environments that span on-premise and public cloud platforms. Be a part of a fast-paced, growing organization focused on doing great projects for great people.
          
          EEO Statement:
          
          Hybrid Pathways is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, marital status, national origin, genetics, disability, age, or veteran status.
          
          Powered by JazzHR
          
          QFqdGb4KPL

Keywords: Hybrid Pathways, New Brunswick , Information Security Architect, Other , New Brunswick, New Jersey