Senior Information Security Architect - Remote

Title: Senior Information Security Architect - Remote

Mandatory skills:

information security,
industry standard security, risk, compliance frameworks, security program documentation,
information security policy, information security process, information security procedure, program development,
security program,
PCI-DSS annual assessment, PCI-DSS 3.2,
architecting implementations, designing implementations, configuring, risk assessing AWS, Azure cloud computing,
IT information security, firewalls, IDS, IPS, SIEM, antivirus, network traffic analyzers,
network security, security protocols, access control, cryptography, application security, data protection,
data classification, handling, assessment, enforcement, data center environments,
regulatory compliance, OWASP, ISO, NIST, FISMA, PCI-DSS, HIPAA, IRS-1075,
risk assessments, industry standard frameworks, ISO, NIST, IT projects, IT technologies, information security incident response plans,
Tenable Nessus, IBM Qradar SIEM, information security solutions, enterprise class data networking solutions, enterprise class server, storage systems,
NIST 800-53, performing risk assessments, NIST 800-53, ISO 27001, ISO 27001, NIST Cyber Security Framework, CSF, performing risk assessments, NIST CSF,
Cyber Security Evaluation Tool, CSET, Information Security Manual, Privacy Threshold Analysis, PTA, Vendor Readiness Assessment Report, VRAR,
ITIL, Information Technology Infrastructure Library, SABSA, TOGAF enterprise architecture frameworks

Description:

The client requires a senior information security architect specializing in industry standard security, risk, and compliance frameworks to develop security program documentation and policy.

The client requires a contract information security specialist (expert) architect/analyst resource to provide information security policy, process, procedure, and program development for the client business. This position will be the client Information Security Business Architect (ISBA, working title) dedicated primarily to support the creation and update of the client's security program and related policies, standards, and procedures/processes.

Required/Desired Skills:

Skill - Required / Desired - Amount of Experience:
Current or prior role as a PCI-DSS Qualified Security Assessor (QSA) or PCI-DSS Internal Security Assessor (ISA) - Desired
Experience leading or directly supporting PCI-DSS annual assessment for a L1 or L2 merchant, familiarity with PCI-DSS 3.2 or higher. - Desired
Strong knowledge and experience architecting/designing implementations, configuring, and risk assessing AWS and/or Azure cloud computing environments. - Desired
Progressive advanced experience as an IT information security professional working within an enterprise environment. - Required - 5 Years
Hands-on experience implementing, administrating and operating technologies such as firewalls, IDS/IPS, SIEM, antivirus, network traffic analyzers - Nice to have - 5 Years
Detailed technical experience with network security, security protocols, access control, cryptography, application security, and data protection. - Required - 5 Years
Extensive experience with data classification, handling, assessment, and enforcement. - Required - 5 Years
Experience implementing and supporting systems within enterprise-class data center environments. - Required - 5 Years
Advanced knowledge of regulatory compliance including, but not limited to: OWASP, ISO, NIST, FISMA, PCI-DSS, HIPAA and IRS-1075. - Required - 5 Years
Experience leading risk assessments using industry standard frameworks such as ISO or NIST for complex IT projects and technologies. - Required - 5 Years
Experience developing, leading and executing information security incident response plans. - Required - 5 Years
Experience developing and implementing information security policy, standards and procedures. - Required - 5 Years
Experience providing research and evidence in support of audits. - Required - 3 Years
CISSP information security certification. - Nice to have
Specific experience implementing, administrating, or operating Tenable Nessus. - Nice to have
Specific experience implementing, administrating, operating or utilizing IBM Qradar SIEM - Highly desired - 2 Years
Experience consulting on information security solutions. - Required - 2 Years
Experience implementing and operating enterprise class data networking solutions - Nice to have
Experience implementing and operating enterprise class server and storage systems - Nice to have - Years
Detailed expert knowledge of NIST 800-53, and performing risk assessments utilizing NIST 800-53. - Required - 2 Years
Detailed expert knowledge of ISO 27001, and performing risk assessments utilizing ISO 27001 - Nice to have
Detailed expert knowledge of the NIST Cyber Security Framework (CSF), and performing risk assessments utilizing the NIST CSF. - Required - 2 Years
Familiarity and experience with the client Cyber Security Evaluation Tool (CSET). - Nice to have - 2 Years
Experience consulting on information security and IT solutions for a motor vehicles agency or the client. - Required
Experience performing risk assessments, documenting and driving compliance with the client Information Security Manual. - Required
Experience completing the client Privacy Threshold Analysis (PTA) documentation. - Nice to have
Experience completing the client Vendor Readiness Assessment Report (VRAR) documentation. - Highly desired
Trained and experience implementing and operating with ITIL (formerly Information Technology Infrastructure Library) concepts. - Nice to have
ITIL (formerly Information Technology Infrastructure Library) certification. - Nice to have
Familiarity and practical experience with SABSA or TOGAF enterprise architecture frameworks and methodologies. - Nice to have
SABSA or TOGAF certification. - Nice to have

VIVA USA is an equal opportunity employer and is committed to maintaining a professional working environment that is free from discrimination and unlawful harassment. The Management, contractors, and staff of VIVA USA shall respect others without regard to race, sex, religion, age, color, creed, national or ethnic origin, physical, mental or sensory disability, marital status, sexual orientation, or status as a Vietnam-era, recently separated veteran, Active war time or campaign badge veteran, Armed forces service medal veteran, or disabled veteran. Please contact us at for any complaints, comments and suggestions.

Contact Details :

VIVA USA INC.
3601 Algonquin Road, Suite 425
Rolling Meadows, IL 60008