Cloud Security Architect

Workiva Denver , CO 80208

Posted 4 weeks ago

The Cloud Security Architect will work with architecture and infrastructure teams to direct the design and development of Workiva security architectures to protect data deployed into multiple cloud systems. This position will help lead the security vision and strategy across all platforms, and partner with leaders across the business to identify key risks and opportunities to enhance Workiva's cloud security posture.

What you'll do

  • Leads business and technical partners with expert knowledge of relevant security technologies.

  • Prepares and analyzes overall security architecture and detailed systems specifications for complex security systems

  • Serves as InfoSec Ambassador and lead technical representative to Infrastructure and Reliability and R&D as a whole.

  • Leads discussion with stakeholder teams regarding best practices in design and implementation of secure cloud systems

  • Leads initiatives designed to share knowledge across InfoSec, R&D, and Technology teams.

  • Identifies, recommends, coordinates, and delivers timely knowledge to support teams regarding technologies, processes or tools.

  • Develops and executes strategies to increase Cloud Security knowledge throughout the enterprise.

  • Represents Security Platform in development and implementation of the overall global enterprise cloud architecture

  • Designs, develops, and implements cloud-native architectures that will allow requirements to be met with appropriate security controls present.

What you'll need

  • Undergraduate degree or equivalent combination of education and experience in a related field

  • 10 years experience with Security Architecture and/or Engineering.

  • 5 years experience with Cloud platforms

  • In-depth knowledge of Cloud services relevant to Workiva's infrastructure, their configuration, and common security problems

  • Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes

  • Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms

  • Experience with deployment orchestration, automation, and security configuration management

  • Experience performing threat modeling and design reviews to assess security implications and requirements for introduction of new technologies.

  • Strong interpersonal and communication skills, with the ability to be successful in a team environment

  • Ability to work independently with minimal direction

  • Technical writing experience

Travel

  • Up to 10% travel may be required

Where You'll Work

Our values drive how we work and who we hire. You will see these values ingrained in how we support our customers, work with team members, build our products and in the work environment we've created.

  • Customer Success: Always delight our customers.

  • Trust: Rely on each other.

  • Integrity: Do the right thing, every time.

  • Collaboration: Share resources and work together.

  • Innovation: Keep creating solutions and finding better ways.

  • Inclusion: Support a diverse community where we all belong.

  • Accountability: Be responsible for your success and failure.

We believe our people are our greatest asset, and our unique culture gives employees the opportunity to make an impact everyday. We give our employees the freedom and resources they need-backed by our culture of collaboration and diverse thought-to continue innovating and breaking new ground. We hire talented people with a wide range of skills and experiences who are eager to tackle some of today's most challenging problems.

At Workiva, you'll enjoy:

  • Fantastic Benefits: With coverage starting day one, choose from competitive health, dental, and vision plans on the largest physician networks available.

  • Casual Dress: Workiva has a casual work environment, most people wear jeans to the office.

  • Involvement: Ability to participate in Employee Resource Groups, (Women in Tech, Women in Sales, Ethnic Diversity, Veterans, Rainbow (LGBTQ), Remote Employees, Caregiving) Volunteering, Company wide celebrations, and more

  • Work-life Balance: We have competitive PTO, VTO and Parental Leave. We encourage employees to spend time enjoying life outside of work.

Learn more: https://www.linkedin.com/company/workiva/life/

Individuals seeking employment are considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, status as a protected veteran, or disability.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cloud Security Architect

Ahead

Posted 2 months ago

VIEW JOBS 4/9/2020 12:00:00 AM 2020-07-08T00:00 AHEAD builds platforms for digital business. By weaving together advances in cloud infrastructure, automation and analytics, and software delivery, we help enterprises deliver on the promise of digital transformation. Cloud Security Architect We are looking for a Security Architect to join the Ahead family. The Security Architect position is responsible for representing and leading the delivery of strategic security service offerings. AHEAD is driven by industry-leading experts who have developed a consultative framework based on an agile approach to deliver value to the client at regular intervals. It provides a vendor neutral consultative view to clients looking to transform their IT environments using next-generation security technologies that can propel the security of posture of a client forward and be an enabler of innovation for the client. The Security Architect leads customer-facing projects. He or she will lead all aspects of the development of security project deliverables including assessment, solution development and implementation efforts. He or she will effectively and accurately scope customer facing projects and identify and positions follow-on work at customers and with stakeholders that extends the value of Ahead as a strategic partner to the client. The Security Architect can individually solve problems of higher complexity and assist and guide more junior resources through their problem resolutions. The Security Architect will also participate in the development and enhancement of the information security solutions portfolio to insure it maintains relevancy with customer requirements and industry changes. The position requires a team player that seeks to supplement their skills through the use of project experience, self-study, and ongoing training. Roles and Responsibilities * Lead technical project teams in the delivery of security service offerings * Serve as the security technical expert on project engagements advising clients on best practices, design standards, procedures to keep their systems safe and data secure, while considering overall manageability of the solution * Ensure that customer expectations are appropriately set and managed * Facilitate strategy, roadmap, design, and planning workshops that are focused on achieving the security and risk profile of the client * Drive and manage the objectives, requirements gathering, project tasks/milestone, project status, dependencies, and timelines, to ensure engagements are delivered successfully and on time while meeting the business objectives * Final editing and sign off on project deliverables * Presentation of deliverables to client executive management * Security thought leader and evangelist * Maintain a broad knowledge and understanding of the current and anticipated future state of the information security marketplace including trends, technologies, and standards * Develop and promote relationships with our clients * Participate and enhance AHEAD security solution portfolio, including consulting offerings and deployment services * Represent service offerings during the sales cycle, including project scoping, proposal development, and presenting proposals to clients * Approximate time allocation of security principal consultants: * 50%-60% - Coordinating and developing client deliverables * 20%-25% - Meeting with prospects, writing and presenting statements of work deliver of proposals, and other marketing activities (speaking at conferences, blog writing, etc.) * 10%-15% - Facilitating client workshops leading guided discovery and presentations * 10%-15% - Developing new service offerings and enhancing existing offerings Skills * Ability to identify weaknesses and potential threats to existing information security strategy encompassing of people, process and technologies and provide security and process recommendations to close any gaps. * Strong interpersonal skills, customer centric attitude, ability to deal with cultural diversity * Meeting facilitation and consensus building skills are required. * Excellent written and verbal communication skills are required. Technical Skills Focused on One or More of the Following Areas * Common programming languages including, C, C++, C#, Java, SQL or PHP * Windows, UNIX and Linux operating systems * Encryption technologies, ethical hacking and penetration testing * Endpoint Security Tools * Multi-factor authentication, single sign-on, identity management or related technologies * Network administration skills to test internal systems such as firewalls and IPS/IDS devices * Public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as security standards for the application development life cycle * Security Information and Event Management (SIEM) implementation and strategy * Familiarity with public cloud offerings from AWS and or Azure and a strong understanding of how to secure workloads in those environments Qualifications * 15+ years of experience in related areas including 5+ years of experience in developing and implementing security projects for medium to large organizations * One or more of the following security certifications is preferred: * Certified Information Systems Security Professional (CISSP) * GIAC Information Security Professional * Systems Security Certified Practitioner (SSCP) * Offensive Security Certified Professional (OSCP) * Certified Information Security Manager certification (CISM) * Certified Information Systems Auditor (CISA) * Certified Information Security Manager (CISM) * Certified in the Governance of Enterprise IT (CGEIT) * Certified in Risks and Information Systems Control (CRISC) * Qualification in Internal Audit Leadership (QIAL) * ISO27001 (auditor or implementer) * Qualified Security Assessor (QSA) * Familiarity with in key legislations such as the Health Insurance Portability & Accountability Act (HIPAA), The Sarbanes-Oxley (SOX) Act of 2002, Payment Card Industry (PCI), The National Institute of Standards and Technology (NIST), The Gramm-Leach Bliley Act (GLBA), General Data Protection Regulation (GDPR), The Federal Risk and Authorization Management Program (FedRAMP). * Familiarity with in key industry recognized security frameworks such as ISO 27001-2 and COBIT, Center for Internet Security (CIS) controls, or OWASP. * Proven team player and team builder Why AHEAD: Transparent management Work alongside and collaborate with industry experts Investment in training & development Incentives for certifications Ability to make an immediate impact Unlimited PTO Outstanding lab Ahead Denver CO

Cloud Security Architect

Workiva