Security Design Review Architect

Overview

Hybrid
$70 - $75
Contract - W2
Contract - 6 Month(s)

Skills

COBIT
Data Security
ISO 9000
NIST 800-53
Network Security

Job Details

Title: Security Design Review Architect
Duration: 6 Months Contract (Hybrid, with potential to convert to FTE)
Location: Dallas, TX (Hybrid)

Candidate must have strong multiple domain experience with broad knowledge of security foundations.

Your Opportunity:
The Clients Cybersecurity Services (SCS) organization is a centralized 1st Line of Defense Center of Excellence (COE) that provides security services to advance Client s security posture and enhance the protection of Client s critical assets.

The Security Design team handles the firm s security strategy and security architecture vision and development. We drive and synchronize security strategies aligned with technology and business priorities, along with validating future directions through security research and innovation.

As a member of the team, you will provide security solutions, designs, architecture guidance, reviews, support, and strategies across the entire organization to include security decision-making through successful implementation while employing the highest levels of integrity. Every security decision must consider both direct and indirect impacts.

Closely partner and collaborate with other engineering teams to effectively design, document, and deploy secure solutions globally to enhance and evolve the security posture of the firm, ensuring data integrity, availability, and confidentiality of all data entrusted that needs protection.

Responsibilities include, but are not limited to:

  • Responsible for secure design review and implementation of on-premises and cloud security controls in support of hundreds of internal and external business IT projects and applications contributing to revenue growth globally.

  • Work with Domain Architect/Product Manager/Owner to build security requirements and secure deployment patterns for the solutions.

  • Describe the solution intent and the associated operating environment, determining the primary systems/subsystems and their interfaces, defining nonfunctional requirements and architectural runway to support new epics/features and expand into new opportunities.

  • Review, assess, and sign off on projects with respect to risk and adherence to security policies, standards, and industry best practices.

  • Experience with security architecture reviews and security controls across IAM, Data Protection, Application Security, Network Security, Security Analytics.

  • Experience with delivering secure design aligning to security requirements and reference architectures.

  • Ensure solutions are fit for purpose and use by working with stakeholders, vendors/service providers, and evaluating the impact of strategic design decisions.

  • Contribute to best practices, standard templates, and the architecture roadmap for security domains.

  • Work across business and technology to interpret business, technology, and threat drivers to develop practical security capabilities.

  • Clarify the architecture for the development teams to support implementation and provide solution options to resolve any architectural impediments.

  • Perform design reviews to ensure all nonfunctional requirements for a solution are sufficiently met (e.g., security, performance, maintainability, scalability, usability, and reliability).

  • Liaise with other security architects and security practitioners to share best practices and insights.

What You Have (Required):

  • 4-year college/university degree required.

  • Minimum 10 years of experience designing, building, and managing security infrastructure or solutions. This includes:

  • Knowledge of multiple security domains.

  • Experience with customer authentication processes (online properties and voice).

  • Detailed understanding of the security domains.

  • Ability to document risks, evaluate remediation options, and present results to tech leaders as well as executive level.

  • Demonstrates flexibility within a variety of changing situations while working with individuals and groups.

Preferred:

  • Experience with AI security.

  • Experience with assessment, development, implementation, integration, optimization, and documentation of a comprehensive and broad set of security technologies and processes in on-premise, public, and private cloud environments.

  • Strong knowledge of enterprise security concepts/frameworks and products, secure design principles, and best practices.

  • Framework knowledge: NIST 800-53, CIS Benchmarks, ISO 27000 series, COBIT, etc.

  • CISSP, CSSLP certification preferred. Other information security oriented certifications a plus.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.