Spectraforce Technologies
Sr. Security/Infrastructure Architect
Spectraforce Technologies, Jacksonville, Florida, United States, 32290
Title: Sr. Security Architect or Infrastructure Architect Location: 100% Remote Duration: 6 Months and the possibility to convert Candidate must have extensive experience as Sr. Security Architect or Infrastructure Architect Do not submit candidates who have Application Architecture background. Cloud is nice to have but not a must Required Work Experience 5 years related work experience (work experience as an Architect working on progressively complex IT projects) Required Education Related Bachelor's degree or additional related equivalent work experience IT related field or equivalent work experience Required Licenses and Certifications CISSP - Cert Information Systems Security Prof (within 180 Days if converted to FTE) Additional Preferred Qualifications: 2 or more years cloud security experience IAM experience with employee and consumer identity security Experience securing API's Health care industry related experience is preferred Additional Information Security certifications (CISM, CISA, etc) preferred Experience using Agile methodology Job Summary The Senior Cybersecurity Architect serves the company as an advisor on best practices and is responsible for designing and effectively implementing enterprise security strategies, architectures and solutions that guide IT security direction. They are accountable for the security architecture across a variety of applications or domains and assigned to project/initiatives of large size, complexity and risk. The Senior Cybersecurity Architect develops actionable security blueprints, principles, models, designs, standards and guidelines to ensure enterprise information technology architecture is consistent, usable, secure and adds value to the business. Interacts with vendors, IT and business area contacts to facilitate flexible, scalable and cost effective security solutions. Also provides technical guidance to less experienced Security Architects. Essential Functions: The essential functions listed represent the major duties of this role, additional duties may be assigned. Accountable for adhering to enterprise architecture standards, ensuring security technology standards and best practices are maintained across the organization and contributing to enterprise architecture strategy-setting. Responsible for design and implementation of security strategy, architecture and platforms. Responsible for enterprise due-diligence activities including security monitoring and security metrics to evaluate effectiveness of the enterprise security program and established controls. Responsible for ensuring necessary security controls are part of technical designs. Participates in security governance processes. Participates in IT security efforts across all business areas and client groups. Troubleshoots, recommends and executes action plans for issue resolution. Serves as security architecture subject matter expert to business areas, project teams and vendors to apply and execute appropriate use of technology solutions and lead efforts to examine technology vision, opportunities and challenges. Builds consensus around principles of security architecture and interprets and clarifies these principles. Participates in the evaluation, selection and implementation of technology solutions including providing detailed analysis of pros and cons and build vs buy options. Provides technical guidance to less experienced Security Architects. Participates on project teams contributing input with regard to security standards and the impact to technology. Investigates and reports on security threats and incidents. Conducts post-event reviews of security incidents. Maintains operational, architectural and design documentation including procedures, task lists, and architecture blue prints. Evaluates strengths and flaws in Security Architecture designs including performance, confidentiality, integrity, availability, access and total cost of ownership. Facilitates project handoffs including preparing documentation, educating and supporting to ensure smooth transitions. Selects and designs tools that allow reuse of design components and patterns between projects. Develops actual working solutions or prototypes based on their own designs and resolves any issues that arise. Establishes and maintains relationships with IT and business area partners to evaluate designs and controls. Continually works to enhance breadth and depth of knowledge and experience. Benchmarks technology strategies and architectures. Monitors and anticipates trends and investigates organizational objectives and needs. Provides guidance on security solutions and prepares benchmarking reports and presentations. Promotes implementation of new technology, solutions and methods to improve business processes, efficiency, effectiveness and value delivered to customers. Preferred Qualifications Health care industry related experience is preferred Information Security certifications preferred (CISSP, CISM) Experience using Agile methodology Extensive experience with IT Infrastructure Services components and how to enable the business while at the same time providing the appropriate level of Security controls Experience with Network Security principles, such as Firewalls, perimeter defenses, load balancers, proxy servers Experience with End-Point, Remote Access, Network Systems Management, Messaging & Collaboration, and Logging & Monitoring Security solutions Big Data architectures such as Hortonworks suite of products: Hadoop, Kafka, Redis, and Object Storage principles Amazon Web Services ""AWS"" and Microsoft Azure deployment, Security, Network, and Operational architectures and solutions Identity and Access Management "IAM" concepts and principles such as federation, delegated access (user managed access "UMA"), single sign on, OAuth, and OpenID. Securing Digital Engagement models such as mobile, IOT, wearables, etc. Security engineering for API gateways, REST Web Services, JSON Web Tokens "JWT", SOAP Knowledge of CMS ARS controls and ability to design security controls to support control objectives Note: The Company is committed to complying with the California Privacy Rights Act ("CPRA") effective January 1, 2023; and all data privacy laws in the jurisdictions in which it recruits and hires employees. A Notice to California Job Applicants Regarding the Collection of Personal Information can be located on our website. Applicants with disabilities may access this notice in an alternative format by contacting NAhrspectraforce.com. Position is offered by a no fee agency.