ShiftCode Analytics
Lead Cloud Security Architect : Fannie Mae
ShiftCode Analytics, Reston, Virginia, United States, 22090
Title:
Lead Cloud Security ArchitectLocation: Reston, VA (must be within 50 miles of DC living right now.)Duration: 6 Months+Visa: Any Visa(except h1b and CPT)Interview: Phone/ZoomMinimum Relevant Experience:• 4 yearsEducation Requirements:• Bachelor's degree or equivalent
Key Areas of Responsibility:• Partner with Enterprise/Portfolio Architecture team and Business Units development squads to collaboratively develop security architectures/designs leveraging approved patterns that ensure applications migrating from on-premise to Cloud, achieving high standards of security practices and compliance.• Drive the development and adoption of cloud security standards, best practices, and technologies within Enterprise IT infrastructure• Liaise on security-related issues with internal business stakeholders, InfoSec, Enterprise Architecture, and application development squads• Work to develop, enhance and document security architecture, security policies, patterns, procedures, guidelines and standards required to design cloud-based solutions• Educate application, portfolio and solution architects on secure solution design and industry best security practices• Work on assessments of compliance and standards including and not limited to NIST, FedRAMP, FIPS, etc.• Support threat modeling and update application security architecture as needed.• Support application development squads with Security implementations and issues
Must-Haves:Required qualifications to be successful in this role: 7-10 years of total IT experience with the following must haves:• 4+ Years of experience in Cyber Security field as an Information Security Architect or Cloud Security Architect• 2-4 years of experience in AWS as a Cloud Security Architect/Engineer and must be certified in at least one of the cloud technologies/infrastructures• Excellent written and communication skills to report, document and communicate security architecture• Excellent coordination skills and must be detail oriented
Nice-to-Haves:• Cloud agnostic security architecture experience a plus• 1-2 years of experience in working with NIST assessments of business applications• Container Security experience to protect container workloads during build and run-time• API Security architecture experience with industry standard API Gateways• Security engineering/administration background leveraging SIEM, Network firewalls, host-based security, and security configuration• One or more industry standard security certification such as CISSP, CCSP or relevant GIAC certifications• One or more Cloud Service Providers Security Specialty Certifications such as AWS Security Specialty or Azure AZ-500 Certification• The group of skills related to Security including designing and evaluating security systems, identifying security threats, securing computers, assessing vulnerability, etc.• The group of skills related to Relationship Management including managing and engaging stakeholders, customers, and vendors, building relationship networks, contracting, etc.• Skilled in presenting information and/or ideas to an audience in a way that is engaging and easy to understand• The group of skills related to Risk Assessment and Management including evaluating and designing controls, conducting impact assessments, identifying control gaps, remediating risk, etc.• Experience identifying and determining levels of risk to an organization's networks and systems using cybersecurity techniques• Working with people with different functional expertise respectfully and cooperatively to work toward a common goal• Skilled in cloud technologies and cloud computing• The group of skills related to Influencing including negotiating, persuading others, facilitating meetings, and resolving conflict
Lead Cloud Security ArchitectLocation: Reston, VA (must be within 50 miles of DC living right now.)Duration: 6 Months+Visa: Any Visa(except h1b and CPT)Interview: Phone/ZoomMinimum Relevant Experience:• 4 yearsEducation Requirements:• Bachelor's degree or equivalent
Key Areas of Responsibility:• Partner with Enterprise/Portfolio Architecture team and Business Units development squads to collaboratively develop security architectures/designs leveraging approved patterns that ensure applications migrating from on-premise to Cloud, achieving high standards of security practices and compliance.• Drive the development and adoption of cloud security standards, best practices, and technologies within Enterprise IT infrastructure• Liaise on security-related issues with internal business stakeholders, InfoSec, Enterprise Architecture, and application development squads• Work to develop, enhance and document security architecture, security policies, patterns, procedures, guidelines and standards required to design cloud-based solutions• Educate application, portfolio and solution architects on secure solution design and industry best security practices• Work on assessments of compliance and standards including and not limited to NIST, FedRAMP, FIPS, etc.• Support threat modeling and update application security architecture as needed.• Support application development squads with Security implementations and issues
Must-Haves:Required qualifications to be successful in this role: 7-10 years of total IT experience with the following must haves:• 4+ Years of experience in Cyber Security field as an Information Security Architect or Cloud Security Architect• 2-4 years of experience in AWS as a Cloud Security Architect/Engineer and must be certified in at least one of the cloud technologies/infrastructures• Excellent written and communication skills to report, document and communicate security architecture• Excellent coordination skills and must be detail oriented
Nice-to-Haves:• Cloud agnostic security architecture experience a plus• 1-2 years of experience in working with NIST assessments of business applications• Container Security experience to protect container workloads during build and run-time• API Security architecture experience with industry standard API Gateways• Security engineering/administration background leveraging SIEM, Network firewalls, host-based security, and security configuration• One or more industry standard security certification such as CISSP, CCSP or relevant GIAC certifications• One or more Cloud Service Providers Security Specialty Certifications such as AWS Security Specialty or Azure AZ-500 Certification• The group of skills related to Security including designing and evaluating security systems, identifying security threats, securing computers, assessing vulnerability, etc.• The group of skills related to Relationship Management including managing and engaging stakeholders, customers, and vendors, building relationship networks, contracting, etc.• Skilled in presenting information and/or ideas to an audience in a way that is engaging and easy to understand• The group of skills related to Risk Assessment and Management including evaluating and designing controls, conducting impact assessments, identifying control gaps, remediating risk, etc.• Experience identifying and determining levels of risk to an organization's networks and systems using cybersecurity techniques• Working with people with different functional expertise respectfully and cooperatively to work toward a common goal• Skilled in cloud technologies and cloud computing• The group of skills related to Influencing including negotiating, persuading others, facilitating meetings, and resolving conflict