Enterprise Information Security Architect/Consultant

Ernst & Young LLP Alpharetta , GA 30023

Posted 2 days ago

Join our Core BusinessServices (CBS) team and you will help support the important business enablementfunctions that keep our organization running strong. As a CBS professional, youwill work across teams to provide the knowledge, resources and tools that helpEY deliver exceptional quality service to our clients, win in the marketplaceand support EY's growth and profitability. Major teams within CBS include

Finance, Information Technology, Human Resources, Enterprise Support Services,Brand Marketing and Communications, Business Development, Knowledge and RiskManagement.

With so many offerings,you have the opportunity to develop your career through a broad scope ofengagements, mentoring and formal learning. That's how we develop outstandingleaders who team to deliver on our promises to all of our stakeholders, and inso doing, play a critical role in building a better working world for ourpeople, for our clients and for our communities. Sound interesting? Well thisis just the beginning. Because whenever you join, however long you stay, theexceptional EY experience lasts a lifetime.

Job Summary

As an Information Security Consultant, theindividual will provide security guidance to internal IT project teamsresponsible for delivering business solutions, with focus on Office 365. TheInformation Security Consultant will identify and prioritize security-relatedrequirements, promote secure-by-default designs and ensure information systemsand infrastructure will be secured throughout system development life cycle(SDLC).

Key Responsibilities

The Information Security Consultant will alsobe expected to perform risk assessments of information systems andinfrastructure, develop appropriate risk treatment and mitigation options, andeffectively articulate findings and recommendations to IT project teams andmanagement. The successful candidate must have solid background of securitydevices and controls used in the infrastructure. The Information Security Specialist will beexpected to work on multiple projects and tasks concurrently.

Knowledge, Skills, and Experience Requirements

  • A minimum of 8-10 years of experience in anInformation Security or Information Technology discipline

  • A good understanding of hosting criticalworkloads in cloud platforms, including Amazon AWS, Microsoft Azure, Office 365.

  • Specific experience in Exchange Online,Exchange On-Prem and other O365 services / deployments and the challenges withsecurity.

  • Experience in defining security for PaaSand IaaS implementations; Such as system configuration, policy, tenant policyrestrictions, access control, authentication (including federation), data atrest, and data in transit security.

  • A thorough understanding of the OWASP Top10 vulnerabilities, risk and impact such as Injection, Broken Authenticationand Session Management, XSS, CSRF, Security misconfiguration and others.

  • Knowledgeable with Vulnerability scanningand Penetration testing methodology

  • Working experience in performing securityassessments of applications.

  • Experience defining security controlrequirements related to IT infrastructure and multi-tier information systems.

  • Develop appropriate risk treatment andmitigation options to address security risks identified during security reviewor assessments

  • Knowledge of common information securitystandards and risk methodologies, such as: ISO 27001/27002, NIST, PCI DSS,ITIL, COBIT

  • Ability to document business and technicalrequirements, reports, Minimum Security Baselines and presentations.

  • Translate technical vulnerabilities intobusiness risk terminology for business units and recommend corrective actionsto customers and project stake-holders

  • Ability to team well with others tofacilitate and enhance the understanding & compliance to security policies

  • Excellent interpersonal, communication,organizational, and project management skills

  • Flexibility to adjust to multiple demands, shifting priorities,ambiguity, and rapid change

Qualifications, Certifications, and EducationRequirements

  • Bachelor's degree in Computer Science or arelated discipline, or equivalent work experience

  • Candidates are preferred to hold or be actively pursuing relatedsecurity professional certifications such as CISSP, CISM or CISA

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Enterprise Data Architect


Posted 2 days ago

VIEW JOBS 7/14/2018 12:00:00 AM 2018-10-12T00:00 Job Number:18355 Position Title: External Description: Global Corporate Platforms (GCP) is an IT organization within Equifax that is supporting Equifax's global technology back-office and front-office applications. GCP is looking for an Enterprise Data Architect who will provide technical leadership in defining strategies for the full life-cycle of data. The Enterprise Data Architect should possess excellent Data Architecture, Analytical and Communication skills. The Enterprise Data Architect will operate under minimal guidance and supervision. Expectations from the role are as follows: * Delivers an information architecture that supports an efficient delivery, drives lower total cost, and develops strategies for securing the data environment. * Defines the data governance, security and functional specification. * Analyzes across multiple data domains and defines strategies to reduce data redundancy, improve data availability, and accessibility by partnering with the technical teams and deliver a maintainable and reusable data architecture * Analyzes data attributes from multiple systems and develop Common Information Models. * Governs data decisions related to data model design, data access patterns, and data services. * Develops standards for naming, describing, governing, managing, modeling, storing, cleansing, transforming, accessing and delivering GCP data to internal, external and SaaS Application Systems * Maintains the end-to-end vision of the data flow diagram and develop logical data models into one or more physical Databases. * Designs and develops Databases, Data Warehouses and Multidimensional Databases. * Acts as a liaison between technical development teams and the DBA's. * Maintains GCP's data models and develop strategies for data acquisition, archival, recovery, and implementation of Database. Experience: * Bachelors Degree required in computer science, information systems or computer engineering. Masters Degree preferred * 5+ years' experience working as a data or information architect. * Deep knowledge of database technology capabilities, tools, and design patterns. * Prior experience modeling in Finance & Billing, HR, Sales, Legal, Marketing data domains * Hands-on experience with data architecting, data mining, data modeling and business requirements gathering/analysis. * Must have implemented enterprise data management processes and procedures. * Skilled understanding of relational data structures, theories, principles and practices. * Excellent metadata management skills and associated processes. * Knowledge of enterprise repository tools, data modeling tools, data mapping tools and data profiling tools. * Experience in developing detailed requirements for product evaluations and assigning weightages. * Demonstrated expertise with repository creation and data life cycle methodologies. * Experience with business requirements analysis, entity relationship planning, database design and reporting structures. * Experience designing data service * Must be able to translate business needs into data architecture requirements. * Experience in estimating complexity of Data solutions and estimation of effort. Primary Location: USA-Atlanta JV White Function: Function - IT Development and Client Services Schedule: Full time City:Alpharetta Location_formattedLocationLong:Alpharetta, Georgia US State:Georgia Community / Marketing Title:Enterprise Data Architect Company Profile: Requisition Number:J00066970 EEO Employer Verbiage: Equifax is an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status. Equifax Alpharetta GA

Enterprise Information Security Architect/Consultant

Ernst & Young LLP