Security Architect

Scope of the project: the position will work as a security identity and access management engineer within the division of information security and will assist with the implementation, integration, and operationalizing security technologies. Additionally, this position will develop automation integration among security tools. This position requires experience in information security architecture and solution design to assist in the strategic planning, designing, and implementation of new systems and changes in current systems in a secure manner. This position is expected to be needed for 12 months with the possibility of extension.

Position title: security architect - consultant

Daily duties / responsibilities:

Preference will be given to a candidate who can work onsite over hybrid over full-time remote (on-site as needed).

• Identity and access management ensuring that appropriate identity management, single sign on, multi-factor authentication, active directory and applications are properly implemented and configured to support it and security operations
• Responsible for automation development and implementation of disparate security and enterprise it tools
• Responsible for planning, designing, development and implementation of enterprise security solutions that align with business goals and risk tolerance.
• Design, deploy and manage countermeasures to known security threats and develop preventative mitigation strategies for new and emergent threats to enterprise data, networks and associated services.
• Ensure, validate and measure the consistent application of protective measures throughout the enterprise business application and infrastructure support environments. Take appropriate action to protect state data and technology services.

Required skills (rank in order of importance):

• Five years of experience and expert understanding of identity and access control, logging and reporting systems
• Five years of experience and expertise in automation development using tools such as python and bash
• Cyber security awareness and understanding
• Five years of experience with linux, windows, network security protocols and procedures
• Five years of experience in supporting large it environments and/or system deployments

Preferred skills (rank in order of importance):

• Siem analysis and reporting
• Security frameworks: nist, csf, cjis, irs 1075, cms mars-e
• Application security (appsec)

Required education/certifications:

bachelor's degree in an

Information technology or

Information security related

Field

eight years of relevant work

Experience may be substituted in lieu of education

Preferred education/certifications:

• Cissp, cisa, ciso or equivalent advanced security certification.
• Additional relevant certifications (e.g., ceh, oscp, gpen).
• Vendor certifications in siem or logging technologies.