Vacancy expired!
PRINCIPAL DUTIES AND RESPONSIBILITIES:Cloud Security – Architect/ Engineer role will deliver on the following responsibilities:
- Plan and design methods for the optimization and integration of various forms of technology systems or policies and high-level principals.
- Apply varied engineering and design theories to produce robust, integrated functioning of various systems, technology interfaces, and/or overarching information policies and high-level principles.
- Assess the functioning of overall technology and communications systems and end-to-end processes and look for ways to upgrade and optimize systems and processes in the future.
- Work across the architecture and technology organization to ensure effective implementation, architecture compliance, and conflict resolution.
- Implement selected security solutions in the Azure and Google Cloud Platform Cloud environments.
- Build the DevSecOps program vision and strategy covering all aspects from architecture, design, development, and deployment
- Build and publish application security standards, design patterns and secure coding standards for web and mobile security
- Build and implement API Security vision and strategy including protection capabilities for securing APIs throughout their life cycle
- Establish encryption standards for the organization
- May participate in other ad-hoc projects to upgrade or install cloud components, workstations, networks, or software, or to assess and optimize overall functioning of technology, data, and processes.
- Experience designing, building, and implementing security architecture within cloud environments (AWS, Azure, Google Cloud Platform, etc.) Azure and Google Cloud Platform preferred.
- Experience with industry security frameworks (ISO, SOX, SWIFT, OWASP, NIST Cyber Security, etc.).
- Foundational and functional understanding of how API works (RESTful, SOAP, Websockets, Federated Auth flow)
- Understanding of API and Service Mesh security - specifically on common controls for API security (SSO, OAuth, Threat Protection)
- Experience with Enterprise Architecture frameworks such as TOGAF, DoDAF, FEAF, etc.
- Applicable security certifications desired; CISSP, CEH, GIAC, GSEC, or CSSLP or advanced degree in InfoSec.
- Azure/Google Cloud Platform Architecture certification (Professional preferred)