Apex Systems
Senior Security Architect
Apex Systems, Charlotte, North Carolina, United States, 28245
***Must be able to sit onsite 4 days per week in Charlotte, NC.***Client:
BankingLocation:
Charlotte, NC
(Must be able to sit onsite 4 days per week.)Length:
12+ month AssignmentPay:
$90 - $95/hour W2
(No Corp-to-Corp)Skills:12+ years of progressively responsible leadership experience in Information/Cyber Security.Comprehensive experience in application security architecture, including design tools, methods, and techniques and the application of defense-in-depth principles; knowledge of network design processes, including understanding of security objectives, operational objectives and tradeoffs.Experience creating architecture deliverables such as to requirements, solution designs, models, patterns, building blocks, sequence diagrams, and target architectures.Deep knowledge of:Several common technology stacks (i.e. AWS, Azure, Kubernetes, distributed, and/or mainframe) and how to secure them, including access control, data protection, monitoring, and integration with other technologies.Authentication and authorization technologies including privileged access management and remote access.Application security, the security development lifecycle, and ability to apply to client-server and web-based application development environments.Enterprise databases and database security, including database activity monitoring and database access control technologies.Encryption methods and technologies for data-in-transit and data-at-rest scenarios.Incident response processes.Denial of service prevention mechanisms.Firewall technologies and intrusion prevention methods.Cloud technologies and hosting.Operating system hardening.Virtualization technologies.Mobile technologies.Encryption, tokenization, and key management technologies.Endpoint Protection (includes malware).Data Loss Protection (DLP) technologies.Responsibilities:Lead the planning, creation, and management of security architecture deliverables, including but not limited to requirements, solution designs, patterns, building blocks, target architectures, policies, standards, and guidance for all applicable platforms and environments to influence CCS, Enterprise Technology, and line of business decision making.Acts as thought leader in new technology innovation, incubation, introduction and implementation critical to the CCS roadmap and our success. Build roadmap for acquiring, integrating, and implementing high-value technology and processes. Oversee efforts (e.g. proof of concepts) to measure and prove new technology value.Lead development of system security context and preliminary system security concept of operations and define baseline system security requirements in accordance with applicable regulations and standards.Create and maintain system security context and preliminary system security concept of operations and define baseline system security requirements in accordance with applicable regulations and standards.Ensure that all acquired or developed security systems and security architectures integrate with enterprise security architecture.Establish strong relationships with key technology stakeholders and create convergence by demonstrating credibility, empathy and expertise on business and technical issues. Facilitate, communicate, collaborate, and persuade others in the definition, adoption and implementation of a coherent architecture.Evaluate existing or emerging technologies to consider factors such as cost, security, compatibility and usability and ensure security product lifecycles are managed proactively.Demonstrate comprehensive experience and skill in Information Security (InfoSec) and cyber security technology and practices necessary to negotiate and persuade technology direction on security principals and tenets such as confidentiality, integrity, availability, authentication and non-repudiation.Perform security reviews, identify gaps in security architecture and develop security risk management plans.
BankingLocation:
Charlotte, NC
(Must be able to sit onsite 4 days per week.)Length:
12+ month AssignmentPay:
$90 - $95/hour W2
(No Corp-to-Corp)Skills:12+ years of progressively responsible leadership experience in Information/Cyber Security.Comprehensive experience in application security architecture, including design tools, methods, and techniques and the application of defense-in-depth principles; knowledge of network design processes, including understanding of security objectives, operational objectives and tradeoffs.Experience creating architecture deliverables such as to requirements, solution designs, models, patterns, building blocks, sequence diagrams, and target architectures.Deep knowledge of:Several common technology stacks (i.e. AWS, Azure, Kubernetes, distributed, and/or mainframe) and how to secure them, including access control, data protection, monitoring, and integration with other technologies.Authentication and authorization technologies including privileged access management and remote access.Application security, the security development lifecycle, and ability to apply to client-server and web-based application development environments.Enterprise databases and database security, including database activity monitoring and database access control technologies.Encryption methods and technologies for data-in-transit and data-at-rest scenarios.Incident response processes.Denial of service prevention mechanisms.Firewall technologies and intrusion prevention methods.Cloud technologies and hosting.Operating system hardening.Virtualization technologies.Mobile technologies.Encryption, tokenization, and key management technologies.Endpoint Protection (includes malware).Data Loss Protection (DLP) technologies.Responsibilities:Lead the planning, creation, and management of security architecture deliverables, including but not limited to requirements, solution designs, patterns, building blocks, target architectures, policies, standards, and guidance for all applicable platforms and environments to influence CCS, Enterprise Technology, and line of business decision making.Acts as thought leader in new technology innovation, incubation, introduction and implementation critical to the CCS roadmap and our success. Build roadmap for acquiring, integrating, and implementing high-value technology and processes. Oversee efforts (e.g. proof of concepts) to measure and prove new technology value.Lead development of system security context and preliminary system security concept of operations and define baseline system security requirements in accordance with applicable regulations and standards.Create and maintain system security context and preliminary system security concept of operations and define baseline system security requirements in accordance with applicable regulations and standards.Ensure that all acquired or developed security systems and security architectures integrate with enterprise security architecture.Establish strong relationships with key technology stakeholders and create convergence by demonstrating credibility, empathy and expertise on business and technical issues. Facilitate, communicate, collaborate, and persuade others in the definition, adoption and implementation of a coherent architecture.Evaluate existing or emerging technologies to consider factors such as cost, security, compatibility and usability and ensure security product lifecycles are managed proactively.Demonstrate comprehensive experience and skill in Information Security (InfoSec) and cyber security technology and practices necessary to negotiate and persuade technology direction on security principals and tenets such as confidentiality, integrity, availability, authentication and non-repudiation.Perform security reviews, identify gaps in security architecture and develop security risk management plans.