Vacancy expired!
BE PART OF A BANK LIKE NO OTHER.
When you work with the world's most innovative companies, you know you're making a difference.Our clients are the game changers, leaders and investors who fuel the global innovation economy. They're the businesses behind the next medical breakthroughs. And the visionaries whose new technologies could transform the way people live and work.They come to SVB for our expertise, deep network and nearly forty years of experience in the industries we serve, and to partner with diverse teams of passionate, enterprising SVBers, dedicated to an inclusive approach to helping them grow and succeed at every stage of their business.Join us at SVB and be part of bringing our clients' world-changing ideas to life. At SVB, we have the opportunity to grow and collectively make an impact by supporting the innovative clients and communities SVB serves. We pride ourselves in having both a diverse client roster and an equally diverse and inclusive organization. And we work diligently to encourage all with different ways of thinking, different ways of working, and especially those traditionally underrepresented in technology and financial services, to apply.Job DescriptionPrincipal Cyber Security Architect provides network security advisory services to business units at SVB, and supports IT initiatives and business projects by recognizing security risks and implementing security controls in adherence to SVB security policies and standards. The architect leads other network security engineers and directly engages SVB IT teams to integrate new and existing security solutions. The Architect will be assigned to large, enterprise and mission critical projects and implement security strategy and architecture, in order to protect SVB assets, manage risk, and maintain compliance.Essential Job Functions:- Defines, refines, and maintains SVB Security policies, standards, diagrams, and repeatable security architectural patterns
- Identifies and prioritizes security activities in large complex projects with multiple stakeholders
- Leads design of complex network security architecture reviews, improvements, processes across the enterprise
- Participates on Architecture Review Boards, Centers for Excellence, and oversees security participation in enterprise risk management and process improvement activities.
- Mentors security engineers
- Engage in cross functional requirements analysis, supports process improvements, issue identification and preparation of issue reporting for senior leadership
- Deep understanding of network and security architectures, defense in depth, cloud and on-prem security models and concepts
- Proficient in designing and deploying IaaS security solutions, preferably in AWS public cloud.
- Experience and working knowledge of industry standard network architectures, routing protocols, subnetting, TCP/IP protocols, networks overlays, tunneling protocols, wireless technologies, load balancers, firewalls, switches, routers, and OSI model layers and protocols at each model layer
- Understanding of international and United States laws and regulations impacting cyber security and personal data privacy, including GLBA, SOX, and the FFIEC Information Security requirements
- Working knowledge of security frameworks and control references such as NIST CSF, CIS 20, COBIT, PCI DSS, OWASP, ISO 27000 family and NIST SP 800 series.
- Familiar with various security architectures and methodologies (Defense in Depth, Kill-Chain, NIST, Critical Controls, OWASP, etc.)
- Excellent analytical, troubleshooting, and problem solving skills
- Ability to demonstrate empathy while seeking common interests, effective problem and conflict resolution skills
- Scripting skills (Shell, Python, Java, PHP, PowerShell, etc.) preferred but not required
- Familiar with government security standards and regulations including GLBA, SOX, PCI, COBIT, ITIL
- Familiar with various security architectures and methodologies (Defense in Depth, Kill-Chain, NIST, Critical Controls, OWASP, etc.)
- Leadership qualities, desire to influence horizontally and vertically, and mentor team members.
- Excellent written and verbal communication skills
- Ability to diagram conceptual
- Bachelor's degree in management Information Systems, Computer Science, and/or Business, or equivalent work experience
- 15+ years working in enterprise networking and network security domains
- Experience leading implementation, supporting, or defining requirements for network topology and infrastructure components such as firewalls, routers, proxy, CASB, switches, wireless technologies, routing and subnetting, zoning and security policy standards
- Experience with AWS public cloud services and security tools
- Experience with SIEM technologies.
- Experience with cloud technologies specifically AWS.
- Experience with AWS in a security environment preferred.
- Experience working with Windows and Linux operating systems
- Experience working with IDS/IPS, URL filtering and proxy solutions, firewall policy management and assurance platforms
- Experience doing vulnerability assessments, risk assessments and penetration testing
- Required - 10+ years of Palo Alto Firewall experience large enterprise environment with global infrastructure