Security Architect – SecDesign

  • Queens, NY
  • Posted 16 hours ago | Updated 16 hours ago

Overview

On Site
Depends on Experience
Accepts corp to corp applications
Contract - W2
Contract - Independent
Contract - 12 Month(s)
No Travel Required
Unable to Provide Sponsorship

Skills

Authentication
Authorization
Cloud Computing
Cloud Security
Communication
FOCUS
IT Risk
IT Risk Management
IT Security Audit
Information Security
Management
Network
Network Security
Presentations
Reasoning
Risk Management
SaaS
Security Architecture
Software Development Methodology
Software Security
Stacks Blockchain
Testing

Job Details

Job Description
The mission of the SecDesign team is to provide security architecture assessments of technology systems and processes to identify business risks and recommend remedial action based on established security standards or security best practices.

The SecDesign Generalist is an internal consultant that is working on multiple security architecture and design assessments spanning multiple classes of technologies. It is an opportunity to get involved in multiple business units and technologies inherent to the mission of SecDesign.

The Integrator works with team members (Technology, Business, Suppliers, Stakeholders and Partners) globally to perform SecDesign assessments. To be successful as an Integrator the candidate must have broad technology experience coupled with risk management, communication, and time management skills.

The candidate will also be working with a global team of experts on modernizing the Firms SDLC platform to enable deployment automation to private and public cloud endpoints and SaaS-based tooling. This role affords the opportunity to get in on the ground floor to help build the next generation of development and deployment tooling across a diverse set of tech stacks for the next decade A SecDesign Generalist has the following

responsibilities
1.Lead SecDesign deep dives with the requestor of the assessment.
2.Prioritize risks identified in relation to business risks.
3.Conduct assessment and provide technology riskrequirements to the requestor. Areas covereda.Authentication, Authorization, Auditingb.Application Security Session Security, VulnerabilityPen Testing items, Input Validationc.Secure data transport and storaged.Network Security Principles and best practices.e.Cloud Security Principles and best practices
1.Periodically review security reference architecture (security blueprints) and conduct updatesenhancements.
2.Participate in various Operational and Technology Risk governance processes.
3.Assist in identifying new areas and opportunities of technology investment for the firm.Skills and Experience

Soft Skills (Required)1.Excellent communication skills written, oral, presentation, listening.

2.Ability to influence through factual reasoning.

3.Time management ability to handle multiple concurrent assessments, plan based deliverable management, strong follow up and tracking.

4.Strong focus on delivery when presented with short timelines and increased involvement from senior management.

5.Ability to adjust communication of technology risks vs business risks based on the audience.

Security Architecture Skills
1.Required In depth knowledge of application, network, and platform security vulnerabilities. Ability to explain these vulnerabilities to developers.
2.Required Experience in conducting Information Security, IT Security, Audit assessments. Presenting the outcomes of the assessment and obtaining buy in.
3.Required Strong focus on reviewing technical designs and fun

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.