Job Description :
Title: security architect
Location – Waltham, MA
Duration- 6+ months
Interviews – if local, must do an onsite interview. IF not local skype is OK
Job Description:
Job Purpose:
The Security Architect serves as a security lead/visionary and will act as an expert in many areas of security, and can describe in business terms the impact of security policies, standards, and architecture on the business. This person will provide security direction to the cyber security programme based on their security and business focus areas.
The Security Architect must be able to interpret high level business requirements and communicate them to highly technical security engineers; conversely, they must also be able to articulate highly technical issues to a non-technical business audience.
The Security Architect is to produce reference architectures and to ensure that the delivered architecture is fit for purpose and effective when transitioned in to service. The Security Architect will manage a team of Security Engineers.
Primary Roles & Responsibilities:
Providing an architectural steer to the program, as required, on security related matters.
o This includes formal input to projects during the analysis and design stages to ensure that security has been considered and is appropriate.
o Further security related guidance may be required during the build and testing stages of the projects.
o Provide technical security input as required by the security policy development team.
o Security review and design of complex application and technology architectures.
o Coordination of technical design/review activities with various segment and corporate groups.
o Evaluation and maintenance of systems and procedures to safeguard internal information systems and databases.
o Researching and recommendation/implementation of changes to procedures and systems to enhance security aligned with corporate policies
o Representing the Security Architecture team within Digital Risk and Security, being an authority.
o Accountable for ensuring that key risks and issues are identified, addressed and resolved in a manner that satisfies the business.
o Accountable for ensuring residual risk is captured and owners are identified and accept the risks.
o Continuous view toward standardization and process improvement with a view toward automation where possible
o Flexibility to occasionally travel as role requires (may include global responsibilities)
Knowledge and Capabilities:
Security Services
o Experience with cloud based security controls (secure web gateway, next gen firewall, cloud access security broker)
o Strong knowledge and experience designing and implementing technical security solutions such as IDS/IPS, secure remote access, firewalls, encryption, secure protocols, data protection, data loss prevention and identity management solutions.
o Strong background in security architecture including a deep knowledge of IT network security (secure LAN, WAN, vLAN, MPLS, Netflow, SNMP and secure network zoning and restricted network design) and database, operating system and application security.
o Strong knowledge of data and information flows, information governance, network protocols.
o Experience of security hardening techniques and policy development, particularly operating system hardening (e.g. Windows, UNIX, Oracle
o Experience in integration with a SIEM, or working within a system monitoring environment.
o Experience in vulnerability and risk management processes.
o Familiar with scripting including Powershell, Python, Perl etc.