security architect principle.

job summary:
The security architect is responsible for the design, building, testing, and implementation of security systems within our IT network for both on premise and cloud environments. The security architect's responsibilities include reviewing our current security measures, recommending enhancements, identifying areas of weakness, engage on most projects and provide expert security architecture guidance and respond promptly to possible security incidents. The Security architect will continually monitor our security posture and determine areas of needed security enhancements. A qualified security architect must be experienced in all aspects of information security controls and IT infrastructure architecture principles. Must also possess strong interpersonal and communication skills and be able to lead and work with a wide variety of people.

 
location: Columbus, Ohio
job type: Contract
salary: $122 - 132 per hour
work hours: 9am to 5pm
education: Bachelors
 
responsibilities:

• Establish a thorough understanding of the organization's technology and IT systems.
• Plan, research, and design security architectures
• Develop, review, and approve the installation requirements for LANs, WANs, VPNs, routers, firewalls, and related network devices
• Design and validate cloud architecture and controls
• Develop project timelines for system upgrades and preparing cost estimates
• Test the final security system and update and upgrade it as needed
• Establish disaster recovery procedures and conduct security breach drills
• Respond quickly and effectively to all security incidents and provide post-event analyses
• Monitor and guide the security team, cultivating a sense of security awareness, and arranging for continuous education
• Remain up to date with the latest security systems, standards, authentication protocols, and products
• Establish overall secure systems & applications architecture and designs based on industry control frameworks, standards and security best practices
• Provide security subject matter expertise on new initiatives to ensure positive security outcomes are delivered, including the early definition of security controls required, definition and implementation of clear secure development design principles
• Evaluate system changes across the organization to assess and document the security risk and impact
• Work with system engineers to understand and implement continuous improvement processes, automation, system upgrades and rollouts
• Continually evaluate systems' security capabilities, risks, and exposure to security threats, documenting risks and offer remediation advice to enhance or apply mitigating controls
• Identify opportunities to standardize and simplify security technology stack by leveraging native cloud capabilities where possible
• Collaborate with the Security Operations team in the assessment of new technologies and products for IT and business solutions
• Participate in the scheduling, testing, and implementing of enhancements or new releases with the security stack
• Partner with teams across IT on active or emerging threats
• Stay informed and tuned to security industry trends, emerging threats, vulnerabilities, & emerging technologies
• Provide leadership on highly complex projects
• Capable of making independent decisions or representing leadership at times.
• Develop, coach, motivate, energize and inspire fellow Flight Safety team members
• Build organizational talent by creating a learning environment that ensures employees realize their highest potential
• Support the budgeting, reporting, forecasting and cost models for security architecture service offerings
• Support the Director - Security Architecture in developing the budget projections based on short- and long- term goals and objectives
• Design and create new security measures for to improve security posture and operations
• Technical understanding of modern application architectures (Containers, Kubernetes, APIs)
• Understanding of CI/CD, IaC, and other processes
• Perform threat modeling to substantiate recommendations and designs
• Oversee secure development practices(code reviews, development strategy/roadmaps, assess risks on current deployed applications)

 
qualifications:

• Bachelor's Degree or equivalent education in Computer Science, Information Systems, information Security or other Information Technology-related field.
• CISSP or CCSP certification
• Additional certifications (CISA, CISM)
• 7-10 years related experience in technical security architecture and engineering function, including hands-on experience in:
  
  
  • Secure Systems architecture & design
  • Secure application development practices, DevOps, & SDLC
  • GDPR, CCPA, NIST 800-53, NIST 800-171, NIST CSF, OWASP, & PCI DSS Controls
  • Secure cloud architecture deployments, Azure & AWS
  • Agile, waterfall, & hybrid project methodology
• Demonstrable experience in architecture and engineering principles (e.g. SABSA, TOGAF)
• Demonstrated experience in implementing and managing at least 9 of the following security defenses:
  
  
  • Web filtering technology
  • Network intrusion defense systems
  • Intrusion prevention systems
  • Endpoint monitoring
  • Data loss prevention
  • Penetration testing
  • Firewalls
  • WAF
  • Vulnerability scanning tools
  • Security Information and Event Management
  • Network tabs, traffic aggregators and filters
  • Forensic investigations and relevant tools
  • Policies, standards, procedures and other forms of documentation
  • Identity management tools, AD, LDAP, web front end and virtualization
  • Application code vulnerability scanning (dynamic & static) and application security
  • Cloud architecture, security controls, secure configuration, and deployment
  • User security training and awareness
• Expert-level knowledge of security principles and technologies
• Experience with security automation and orchestration
• Experience with CI/CD pipelines and secure DevOps
• A sound understanding of emerging threats and industry trends

 
skills:

• Provide technical security architecture guidance and oversight to ensure increased security architecture maturity
• Articulate issues, risks, and proposed solutions to various levels of staff and management
• Contribute to the development of the security strategy, policy and service delivery objectives and best- practices for the design and delivery of security architecture services
• Develop processes, standards, guidelines and policies for the implementation and maintenance of security architecture principles within projects
• Manage multiple enterprise-wide programs simultaneously
• Proficient knowledge of the organization's mission, values and strategic goals to their work
• Expected to present information in writing, email, PowerPoint and other forms of documentation.
• Expected to work with employees from all areas of IT and maintain a good working relationship with them.
• Proficient with interacting with multiple levels and roles within the organization and shall have the ability to apply different strategies to convince others to change their opinions or plans.
• Regularly report to the Director Security architecture and CISO office using KPIs and other metrics to clearly reflect accomplishments and progress over time
• Demonstrate process-oriented approach with high attention to detail
• Excellent critical-thinking and organizational skills
• Proficient interpersonal skills with the ability to interact professionally with all levels within the organization
• Ability to work successfully with a diverse set of individuals and constituencies, and to be adept at advocating for, recommending and building consensus around suggested improvements
• Ability to work creatively and analytically with others in a problem-solving environment
• Ability to think both strategically and tactically in a high energy, fast paced environment
• Ability to exercise sound judgement, problem solve, and make decisions in complex situations
• Ability to communicate verbally and in writing within all areas and at all levels of the organization

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact HRsupport@randstadusa.com.

Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad Digital offers a comprehensive benefits package, including health, an incentive and recognition program, and 401K contribution (all benefits are based on eligibility).

This posting is open for thirty (30) days.

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.