Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Senior Information Security Architect

Expired Job

Perspective Talent Houston , TX 77077

Posted 2 weeks ago

Senior
Information Security Architect

Type:
Full Time Direct
Hire


Location: Houston, TX

US Citizen, Permanent Resident, and TN1 Visa Only

Senior Information Security Architect Summary

The Senior Information Security Architect will be an enterprise wide technical resource and thought leader on IT security technologies and practices for implementing Security Solutions within the organization. The Architect will assist with evaluating and establishing the information security strategy and program, with responsibilities including creating strategy, policy, meeting regulatory compliance, risk identification and mitigation, security architecture and standards.

Senior Information Security Architect Responsibilities

  • Acts as a technical consultant for the enterprise, ensuring security design for systems align with business needs, architecture and technical standards.
  • Provides security guidance and training to IT associates, business information owners and business management.
  • Assists in the development and maintenance of information security policies, standards, and procedures; and assist in resolving security policy issues and implementing security procedures.
  • Works closely with the IT Directors to ensure security solution consistency with the enterprise architecture and strategy. This includes the review of detailed specifications for security systems and he associated design, scalability, completeness, quality and performance.
  • Works with IT Directors to understand proper security architectural disciplines and ensure that they are applied, but also provides feedback for enhancements to the overall architecture.
  • Proactively reviews and analyzes new or proposed security systems, tools and methodologies, assessing their risk and their value in support of security strategy and corporate goals.
  • Provides technical expertise and guide the administration of security tools that control and monitor information security,
  • Recommends and designs security controls to support the data security needs of systems being developed or acquired.
  • Works directly with the IT Directors to implement and maintain security strategy and framework.
  • Leads and/or teams with other internal security and/or IT professionals to monitor, investigate, and report on security events and incidents.
  • Stays up-to-date on relevant security trends. Develops and maintains a network of contacts that can provide information.
  • Meets with and determine business unit regulatory compliance requirements and ensure security meets expectations.
  • Consults with business units on options/ideas on improving cost/approach to security.
  • Assists with the development, documentation, implementation, and communication of an enterprise-wide information security strategy and policies.
  • Defines and implements an overall information security architecture to address internal/external threats as well as all platforms (application, network, mobile).
  • Assists with the development, implementation, and management of security controls, processes, and policies as a result of analysis, research, and recommendations.
  • Leads IT security incident response to coordinate and manage resolution to current or potential threats, incidents, or vulnerabilities.
  • Provides expertise and security direction to project teams to eliminate and mitigate security issues.
  • Identifies infrastructure protection goals and objectives consistent with the enterprise IT security strategy.
  • Conducts research and 2-5 year planning to ensure the organization is continually aware of industry security trends, and best practices to propose new technology and tools investments.
  • On an ongoing basis, conducts security assessments and audits of IT's application and infrastructure portfolio to identify determine issues, weaknesses and gaps in processes and technology.
  • Works with all company business units, legal, and internal/external audit.
  • Advises on security training and awareness

Senior Information Security Architect Responsibilities

Qualifications:

  • Bachelor's degree from four-year college or university in computer science or related technical field; plus eight years of increasingly responsible security design and implementation experience on multiple platforms; or equivalent combination of education and experience.
  • Minimum of four years of experience effectively leading security requirements gathering, design, and deployment of solutions.
  • Demonstrated track record of providing strong competent technical leadership on multiple security projects, required
  • Expert level technically, supplying superior security consultation to provide and support software applications, systems, and infrastructure solutions that meet business needs.
  • Broad expertise in the security field's concepts, practices and procedures, as well as substantial business knowledge.
  • Solid project management skills, especially in a cross-functional environment.
  • Strong team-oriented interpersonal and communication skills; ability to present and discuss technical information in a way that establishes rapport, persuades others, and gains understanding.
  • Ability to effectively interface with a wide variety of audiences, up to executive management.
  • Hands-on information security experience with security architecture, network security, and/or computing platform security to include application security, vulnerability scanning, data loss prevention, log management/SEIM, web filtering, use of firewalls access control lists, and Computer and Network Forensics.
  • Information Security Frameworks and Standards (ISO, COBIT, NIST, etc.).
  • IT Security Risk and Compliance and malware prevention and detection.
  • Encryption (SSL, PKI, file and session encryption), intrusion detection and/or intrusion prevention.
  • CISSP required, or must be obtained within 12 months of hire.
See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Information Security Architect

Hewlett-Packard Company

Posted 1 week ago

VIEW JOBS 11/7/2018 12:00:00 AM 2019-02-05T00:00 At HP, talent is our criteria. Join us in reinventing the standard for diversity and inclusion. Bring your awesomeness, and just be you! Are you someone interested in working in an agile start-up environment while leveraging the brand recognition, solution capabilities and global reach of one of the world's largest IT corporations? The Emerging Compute Solutions team operates in a highly dynamic landscape with a product portfolio that encompasses commercial services, analytics and machine learning, commercial mobility devices, retail point of sale devices, thin clients and workflow transformation. The business unit builds a best-in-class, multi-OS Services portfolio powered by software, cloud, analytics and machine learning as well as expert IT resources. Our services portfolio powers HP's Device as a Service (DaaS). For more info on DaaS, please visit: http://www8.hp.com/us/en/services/daas.html. As companies increasingly pivot towards a digital business model, more data is being generated and shared between organizations, partners and customers than ever before. The team is seeking an Information Security Architect experienced in working within a multi-disciplinary environment to identify security gaps, develop controls and design workflows that meet business objectives while complying with security standards. This individual will play an integral role in helping our clients ensure they are protected by working to develop services focused on assisting customers with securing their data as well as responding to and remediating threats. This person will also work closely with product management, technology partners, channel partners, customers and internal technologists though direct and indirect reports. This position reports to the Senior Manager of DaaS Technology Solutions within the Emerging Compute Solutions global business unit. Through this position, the individual will be expected to routinely exercise independent judgment in developing methods, techniques and criteria for achieving objectives. Key Responsibilities * Validate secure development practices through internal threat modeling and penetration testing for hardware platforms as well as applications * Manage and/or perform end to end full stack penetration testing * Support/improve cyber security services and offerings through threat analysis and research as needed. * Devise creative and custom exploits, solutions, and techniques to discover vulnerabilities and exploitability of the targets * Create detailed report of findings and recommendations after analysis is complete to present to key stakeholders * Stay up-to-date on current tools, techniques, and vulnerabilities * Understand current as well as emerging security threats and design security architecture to mitigate threats where possible * Stay abreast of new information systems and security technologies and integrate into security architecture design when appropriate * Correlate data from intrusion detection and prevention systems with data from other sources such as firewall, web server, and DNS logs * Support the development and maintenance of documented play-book procedures, knowledge articles, and training material. Knowledge/Skills Required: * Proficiency with solutions design, configuration, and implementation * Strong understanding of network architecture, firewalls, Intrusion Detection Systems, web filtering, audit and log management, physical security control systems, real-time systems, and common operating systems. * Experience managing and/or performing end to end full stack penetration testing(from scoping, through threat modeling, information gathering, vulnerability assessment, and active testing) for hardware platforms as well as applications. * Solid understanding of emerging technologies in IT such as a Cloud Platform, Internet of Things and Mobile BYOD as well as the associated security risks * Advanced experience of IT processes, tools and solutions * Demonstrable knowledge and experience of: * Common attack techniques for web, mobile and services. * Common application testing tools including, but not limited to Metasploit, Nessus, Nmap, Tcpdump, Wireshark and Burp Suite, SQL Map etc. * OWASP Top 10 iPhone and Android application pen testing (specifically relating to reverse engineering and instrumentation toolsets) * Penetration testing in Agile and/or Extreme development environments * Information Security Frameworks and Standards such as: ISO, COBIT, GDRP, OWASP, NIST CSF, PCI DSS, and NY-DFS; and, - Traditional security operations, event monitoring, and Security Information and Event Management (SIEM) tools. * Understanding of encryption technologies and common network protocols. * Mastery of Cloud service and deployment models (e.g. CaaS, SaaS, IaaS, and PaaS) and proven experience migrating on premise solutions to the Cloud * Experience using Cloud-native/Cloud-friendly authentication mechanisms such as OAuth, OpenID, SAML, Ping, etc. * Experience supporting a multi-OS environment (iOS, Android, Windows 10, etc.) * Strong analytic and problem-solving abilities * Experience in cyber security analysis, incident response, or related experience * Excellent written/oral communications and analytical skills * Excellent interpersonal skills; ability to build, consensus building, manage and influence virtual teams * Comfortable working in a dynamic environment, balancing multiple incidents, special projects, and other activities. * Ability to interface effectively with all levels of management and functional disciplines Education and Experience * BA or BS in Technology related field (advanced university degree preferred) * Certified Information Systems Security Professional (CISSP) preferred * Experience in a Security Analyst, Security Engineer or Security Architect role * Typically 7+ years' experience in the Information Security field * Typically, 7+ years of relevant software experience * Experience managing cross-functional teams or projects and influencing senior-level management and key stakeholders desired. * ITIL Certification preferred, strong understanding of ITIL tools, processes and terminology a plus #LI-POST Hewlett-Packard Company Houston TX

Senior Information Security Architect

Expired Job

Perspective Talent