Job Description :
Title: Senior Infrastructure Architect
Location: Prairie, MN
Duration: 6+ Months
Job Description
The infrastructure architect is responsible for the infrastructure as a whole, including overseeing design, development changes, lifecycle management and making future recommendations.
Provides technical oversight of enterprise-wide infrastructure or systems.
Designs, builds, and maintains solutions compliant with enterprise architecture frameworks and development standards.
Provides leadership for technical teams, including mentoring less senior members, overseeing design/code reviews, and creation or reviewing other artifacts as appropriate.
Is very involved (along with other disciplines) in creation of accurate & realistic estimates for major infrastructure, architecture and system functions.
Uses independent judgment in developing recommendation but consults others before implementing recommended changes.
Is able to perform the functions of lower-level roles in the following areas: infrastructure, networking, and enterprise architecture Effectively communicates business value of complex technical solutions to internal and external business and technical leaders in a manner they can understand.
Works with business and technical staff to design a solution that meets business needs.
Provides a balanced approach between technical solutions and business requirements for designs and problem resolution.
Troubleshoots issues that arise and escalates as appropriate.
Makes recommendations regarding new industry technology and best practices.
Works under minimal supervision on complex projects.
Requirements
Require a Bachelor''s degree in computer science or engineering; may have completed an advanced degree, certification, or minimal 8+ years of related professional experience Minimum 10 years of related enterprise-level infrastructure/architecture experience.
Deep knowledge in enterprise architecture with an infrastructure focus on network design and implementation (Cisco ASA/ASM/VPN, F5 Load Balancing) virtualization (VMWare solutions, Blade Servers), data-center & systems management, and network storage/backup solutions (NetApp/CommVault
Demonstrated ability to reduce Total Cost of Ownership (TCO) Measurable experience leading technical projects (Tech lead, or lead developer
Ability to roadmap technology frameworks/applications to remove technical debt, add features, increase maintainability, and understanding/planning for the applications end of life.
Experience working on and leading technical project teams on large scale, enterprise-wide development efforts.
Highly skilled with extensive proficiency.
Preferred Qualifications
Experienced in developing and executing cost saving initiatives Broad knowledge in at least three of the following: Enterprise Architecture, Security, Controls (ISO,SOC1,SOC2) SDLC, Data Center Migration & Management, BC/DR, other technologies.
Experience in multiple development technologies/platforms and languages NET, Java, PowerBuilder, other technologies.
Azure Cloud
HP/Cisco/Dell Blade Servers
SAN
Advise on security architecture and change control issues related to IT infrastructure of CenturyLink customers. This pertains to Threat Management, Log Management, Network and Host Based Intrusion Detection Systems, DDOS, Two-Factor Authentication, Web Application Firewalls, CISCO Firewalls etc. Interface with the CenturyLink customers? internal staff to support the customer?s IT and security teams on audit and oversight requests related to CenturyLink-managed infrastructure.
Strong Analysis Skills to perform network and system vulnerability assessments, identifying and prioritizing security issues, and documenting findings and recommendations.
Strong Analysis Skills and review of security events and collect metrics based on technologies such as Network Intrusion Detection Systems (NIDS), escalating and reporting on issues according to customer and CenturyLink requirements. Strong Analysis and Compliance Skills: Review and analyze security events and alerts and provide customer with a high level summary of any ongoing or potential threats; Log Management Reviews (significant expertise with Log Logic or similar platforms); Perform Intrusion Detection Reviews (significant expertise with CISCO NIDS and Tripwire or similar platforms); Perform Firewall Rules Reviews, Firewall Engg tasks and adhoc implementation (expertise in CISCO ASA Firewalls, Palo Alto or similar platforms); Review Web Application Firewalls Logs (significant expertise with Imperva or similar platforms); Perform Analysis and Reviews for DDOS Solutions.
Security services including audit and assessment activities, compliance arguments and documentation, and continuous monitoring services in accordance with the templates and requirements for FedRAMP approval to operate (ATO) and/or FISMA ATO processes per Agency requirement.
Work with the assigned ISSO, the CenturyLink Security Team, the CenturyLink Operations and Maintenance (O&M) Team to Provide Security operations services, as well as the related compliance activities, across the full security management cycle, with specificity to SaaS Cloud Operations engagements. Provide Security services to keep current the established FedRAMP documentation library, related Policies and procedure documents, and related artifacts.
Provide Security services to support tactical and strategic initiatives as required for maintaining existing ATO compliance and in support of the FedRAMP certification program.
Provide support for continued compliance to the Risk Management Framework and Agency specific policy and requirements through understanding of the installed customer supporting infrastructure, its operation, and its security posture.
Understand new laws, regulations, policies, and frameworks/framework updates and provide consultation, recommendations, and implementation advice as part of the team.
Recommend security patches that should be applied to CenturyLink-managed IT infrastructure, accounting for the customers’ requirements.
Communicate with the customer regarding pertinent information security issues and provide periodic security posture updates. Strong Analysis Skills to architect complex IT hosting solutions by providing security subject-matter expertise in a consultative manner.
Participate in the security incident response process. Maintain documentation around the various security services and related site specific procedures.
Assist with any additional internal and external audits.
Perform security services on a variety of customer engagements to result in 100% billable time on average.
Managed Security Services background in Consulting and steady state services.
Should be customer-facing and set and manage expectations with client stake-holders and team members.
Demonstrated ability to make and take responsibility for decisions on major technical issues.
Thorough knowledge and experience with Information security standards (Security architecture analysis, Security Administration and Network and Firewall Engineering
Demonstrated experience with FISMA, FedRAMP, Continuous Monitoring practices, POAM maintenance is required.
Ability to read, interpret, analyze and communicate Level 3 network diagrams.
Excellent communication and presentation skills with the ability to present to a variety of external audiences, including being able to interact with senior executives.
Resilience and ability to handle stressful situations effectively while managing several tasks.
Communicate with the client regarding pertinent information security issues and provide periodic security posture updates.
Ability to work within a defined change management process and willingness to participate in periodic after-hours scheduled maintenance.
Ability to work in a self-directed manner and demonstrate initiative. At least 10 years of experience as an information security professional in the security consulting space.
At least two security-related certifications, such as GSEC and CISSP.
Perform security services on a variety of customer engagements to result in 100% billable time on average. Managed Security Services background in Consulting and steady state services.
Should be customer-facing and set and manage expectations with client stake-holders and team members. Demonstrated ability to make and take responsibility for decisions on major technical issues. Thorough knowledge and experience with Information security standards (Security architecture analysis, Security Administration and Network and Firewall Engineering
Demonstrated experience with FISMA, FedRAMP, Continuous Monitoring practices, POAM maintenance is required.
Ability to read, interpret, analyze and communicate Level 3 network diagrams. Excellent communication and presentation skills with the ability to present to a variety of external audiences, including being able to interact with senior executives.
Resilience and ability to handle stressful situations effectively while managing several tasks.
Communicate with the client regarding pertinent information security issues and provide periodic security posture updates.
Ability to work within a defined change management process and willingness to participate in periodic after-hours scheduled maintenance.
Ability to work in a self-directed manner and demonstrate initiative.
At least 10 years of experience as an information security professional in the security consulting space.