Hornet Staffing, Inc.
IT - Cybersecurity - Sr Cybersecurity Architect
Hornet Staffing, Inc., Jacksonville, Florida, United States, 32290
Job Description:JOB SUMMARY
The Senior Cybersecurity Architect serves the company as an advisor on best practices and is responsible for designing and effectively implementing enterprise security strategies, architectures and solutions that guide IT security direction. They are accountable for the security architecture across a variety of applications or domains and assigned to project/initiatives of large size, complexity and risk.The Senior Cybersecurity Architect develops actionable security blueprints, principles, models, designs, standards and guidelines to ensure enterprise information technology architecture is consistent, usable, secure and adds value to the business. Interacts with vendors, IT and business area contacts to facilitate flexible, scalable and cost effective security solutions. Also provides technical guidance to less experienced Security Architects.Essential Functions:• The essential functions listed represent the major duties of this role, additional duties may be assigned.• Accountable for adhering to enterprise architecture standards, ensuring security technology standards and best practices are maintained across the organization and contributing to enterprise architecture strategy-setting.• Responsible for design and implementation of security strategy, architecture and platforms.Responsible for enterprise due-diligence activities including security monitoring and security metrics to evaluate effectiveness of the enterprise security program and established controls.• Responsible for ensuring necessary security controls are part of technical designs.• Participates in security governance processes.• Participates in IT security efforts across all business areas and client groups.• Troubleshoots, recommends and executes action plans for issue resolution.• Serves as security architecture subject matter expert to business areas, project teams and vendors to apply and execute appropriate use of technology solutions and lead efforts to examine technology vision, opportunities and challenges.• Builds consensus around principles of security architecture and interprets and clarifies these principles.• Participates in the evaluation, selection and implementation of technology solutions including providing detailed analysis of pros and cons and build vs buy options.• Provides technical guidance to less experienced Security Architects.• Participates on project teams contributing input with regard to security standards and the impact to technology.• Investigates and reports on security threats and incidents.• Conducts post-event reviews of security incidents.• Maintains operational, architectural and design documentation including procedures, task lists, and architecture blue prints.• Evaluates strengths and flaws in Security Architecture designs including performance, confidentiality, integrity, availability, access and total cost of ownership.• Facilitates project handoffs including preparing documentation, educating and supporting to ensure smooth transitions.• Selects and designs tools that allow reuse of design components and patterns between projects. Develops actual working solutions or prototypes based on their own designs and resolves any issues that arise.• Establishes and maintains relationships with IT and business area partners to evaluate designs and controls.• Continually works to enhance breadth and depth of knowledge and experience. Benchmarks technology strategies and architectures. Monitors and anticipates trends and investigates organizational objectives and needs. Provides guidance on security solutions and prepares benchmarking reports and presentations.• Promotes implementation of new technology, solutions and methods to improve business processes, efficiency, effectiveness and value delivered to customers.
Preferred Qualifications• Health care industry related experience is preferred• Information Security certifications preferred (CISSP, CISM)• Experience using Agile methodology• Extensive experience with IT Infrastructure Services components and how to enable the business while at the same time providing the appropriate level of Security controls• Experience with Network Security principles, such as Firewalls, perimeter defenses, load balancers, proxy servers• Experience with End-Point, Remote Access, Network Systems Management, Messaging & Collaboration, and Logging & Monitoring Security solutions• Big Data architectures such as Hortonworks suite of products: Hadoop, Kafka, Redis, and Object Storage principles• Amazon Web Services ""AWS"" and Microsoft Azure deployment, Security, Network, and Operational architectures and solutions• Identity and Access Management "IAM" concepts and principles such as federation, delegated access (user managed access "UMA"), single sign on, OAuth, and OpenID.• Securing Digital Engagement models such as mobile, IOT, wearables, etc.• Security engineering for API gateways, REST Web Services, JSON Web Tokens "JWT", SOAP• Knowledge of CMS ARS controls and ability to design security controls to support control objectives
Required Work Experience
5+ years related work experience (work experience as an Architect working on progressively complex IT projects)Required Education
Related Bachelor's degree or additional related equivalent work experience IT related field or equivalent work experienceRequired Licenses and Certifications
CISSP - Cert Information Systems Security Prof (within 180 Days if converted to FTE)Additional Preferred Qualifications:• 2 or more years cloud security experience• IAM experience with employee and consumer identity security• Experience securing API's• Health care industry related experience is preferred• Additional Information Security certifications (CISM, CISA, etc) preferred• Experience using Agile methodology
The Senior Cybersecurity Architect serves the company as an advisor on best practices and is responsible for designing and effectively implementing enterprise security strategies, architectures and solutions that guide IT security direction. They are accountable for the security architecture across a variety of applications or domains and assigned to project/initiatives of large size, complexity and risk.The Senior Cybersecurity Architect develops actionable security blueprints, principles, models, designs, standards and guidelines to ensure enterprise information technology architecture is consistent, usable, secure and adds value to the business. Interacts with vendors, IT and business area contacts to facilitate flexible, scalable and cost effective security solutions. Also provides technical guidance to less experienced Security Architects.Essential Functions:• The essential functions listed represent the major duties of this role, additional duties may be assigned.• Accountable for adhering to enterprise architecture standards, ensuring security technology standards and best practices are maintained across the organization and contributing to enterprise architecture strategy-setting.• Responsible for design and implementation of security strategy, architecture and platforms.Responsible for enterprise due-diligence activities including security monitoring and security metrics to evaluate effectiveness of the enterprise security program and established controls.• Responsible for ensuring necessary security controls are part of technical designs.• Participates in security governance processes.• Participates in IT security efforts across all business areas and client groups.• Troubleshoots, recommends and executes action plans for issue resolution.• Serves as security architecture subject matter expert to business areas, project teams and vendors to apply and execute appropriate use of technology solutions and lead efforts to examine technology vision, opportunities and challenges.• Builds consensus around principles of security architecture and interprets and clarifies these principles.• Participates in the evaluation, selection and implementation of technology solutions including providing detailed analysis of pros and cons and build vs buy options.• Provides technical guidance to less experienced Security Architects.• Participates on project teams contributing input with regard to security standards and the impact to technology.• Investigates and reports on security threats and incidents.• Conducts post-event reviews of security incidents.• Maintains operational, architectural and design documentation including procedures, task lists, and architecture blue prints.• Evaluates strengths and flaws in Security Architecture designs including performance, confidentiality, integrity, availability, access and total cost of ownership.• Facilitates project handoffs including preparing documentation, educating and supporting to ensure smooth transitions.• Selects and designs tools that allow reuse of design components and patterns between projects. Develops actual working solutions or prototypes based on their own designs and resolves any issues that arise.• Establishes and maintains relationships with IT and business area partners to evaluate designs and controls.• Continually works to enhance breadth and depth of knowledge and experience. Benchmarks technology strategies and architectures. Monitors and anticipates trends and investigates organizational objectives and needs. Provides guidance on security solutions and prepares benchmarking reports and presentations.• Promotes implementation of new technology, solutions and methods to improve business processes, efficiency, effectiveness and value delivered to customers.
Preferred Qualifications• Health care industry related experience is preferred• Information Security certifications preferred (CISSP, CISM)• Experience using Agile methodology• Extensive experience with IT Infrastructure Services components and how to enable the business while at the same time providing the appropriate level of Security controls• Experience with Network Security principles, such as Firewalls, perimeter defenses, load balancers, proxy servers• Experience with End-Point, Remote Access, Network Systems Management, Messaging & Collaboration, and Logging & Monitoring Security solutions• Big Data architectures such as Hortonworks suite of products: Hadoop, Kafka, Redis, and Object Storage principles• Amazon Web Services ""AWS"" and Microsoft Azure deployment, Security, Network, and Operational architectures and solutions• Identity and Access Management "IAM" concepts and principles such as federation, delegated access (user managed access "UMA"), single sign on, OAuth, and OpenID.• Securing Digital Engagement models such as mobile, IOT, wearables, etc.• Security engineering for API gateways, REST Web Services, JSON Web Tokens "JWT", SOAP• Knowledge of CMS ARS controls and ability to design security controls to support control objectives
Required Work Experience
5+ years related work experience (work experience as an Architect working on progressively complex IT projects)Required Education
Related Bachelor's degree or additional related equivalent work experience IT related field or equivalent work experienceRequired Licenses and Certifications
CISSP - Cert Information Systems Security Prof (within 180 Days if converted to FTE)Additional Preferred Qualifications:• 2 or more years cloud security experience• IAM experience with employee and consumer identity security• Experience securing API's• Health care industry related experience is preferred• Additional Information Security certifications (CISM, CISA, etc) preferred• Experience using Agile methodology