Job Description :
Title: Senior Security Architect

Position Type: Contract
Location: Newport Beach, CA, United States

Remarks:
*This is a high level position*
Candidates must have a minimum of 10 years of Security Architect experience. Financial background.

*Ideal candidate: is able to work with all levels of staff, especially Senior staff employees; strong/excellent communication skills both verbal and written;
Possesses confidence in themselves to help drive change technically and within the team;
Able to mentor and direct junior level staff, but not under a manager title.

Interview Process: Phone screening with a follow up in-person interview.

Description:
Job Overview
As a Senior Security Architect, you will play a critical role in the design, development, and delivery of key technology solutions across multiple lines of business. You will be part of a highly functioning and energetic team that plays a key role in supporting the transformation of platforms and applications and where applicable, their journey to the private/public cloud. You will need to be a big-picture strategic thinker, who is able to pay close attention to details and autonomously drive initiatives throughout the enterprise. This position is an exciting role for the right candidate with the technical know-how and leadership qualities who is eager to drive security initiatives from start to finish. This position presents opportunities to advise on cybersecurity strategy and implementation to senior management. The Information Security team values an entrepreneurial attitude and fosters an environment for professional growth and career development. The candidate for this role should be an excellent communicator, who is unafraid to ask the tough questions, to challenge the status quo, and who knows how to drive change. They will be an important culture carrier for the organization, who models the right behaviors for the team, and helps create a shared sense of leadership and accountability across technology.

Key Responsibilities
Work closely with Chief Information Security Officer, information security team members, infrastructure leadership, business partners, and operations teams towards establishing a strategic security architecture vision (including standards and frameworks where relevant) that are aligned with the overall business strategy leveraging the current technology roadmap
Determine security requirements by evaluating business strategies and requirements, conducting system security and vulnerability analyses to identify gaps, studying technical architecture/platform inter-dependencies, identifying integration issues, and defining a mature operating governance model
Produce gap analysis documentation to identify any gaps between specific technical security requirements and the architecture of the system and provide detailed technical recommendations on appropriate mitigation measures
Provide mentorship and direction to junior architecture and operational staff
Serve as information security subject matter expert, trusted advisor
Understand current as well as emerging security threats and design security architectures to mitigate threats where possible
Stay abreast of new security technologies and integrate into security architecture design when appropriate
Requirements
Minimum 10 years of security architecture experience
2+ years hands-on experience working with the implementation and integration of a major public cloud service into an enterprise environment
2+ years hands-on experience working application development teams towards a unified and secure DevOps model including but not limited to static/dynamic analysis tools, vulnerability management, entitlement modeling, and overall secure code design principles through standards and policies.
Familiarity and/or hands-on experience in more than one of the following technology verticals:
1. Infrastructure computing (SaaS, PaaS, IaaS)
2. Public cloud (private, public, and/or hybrid) design and architecture
3. Identity management
4. Cloud orchestration and infrastructure automation
5. Web services
6. API integration
7. Federated Identity / Single Sign-On (SSO) / SAML
Ability to meet established deadlines; must be a self-starter and be able to work independently as well as being a team player
Must have a firm grasp of concepts and technology across all IT areas to be able to spot gaps and develop appropriate controls
Ability to multitask; team player with a focus on results and fostering a partnership with business units
Strong facilitation skills and a clear ability to build strong relationships with business stakeholders at all levels, including senior managers
Working knowledge of common information technology management frameworks, such as ISO/IEC 27001, OWASP, SANS, ITIL, COBIT, and NIST
Demonstrated ability to translate business drivers and priorities into security design
Ability to translate complex technical information across all levels of the organization
Strong, proven problem-solving skills and ability to identify, analyze, and resolve problems, driving solutions through to completion
Understanding of emerging technologies in IT such as a Cloud Platform and Mobile BYOD as well as the associated security risks
Powershell and/or Python scripting experience a plus.