Security Architect at ITProFound

Job Title:  Security Architect - Consultant

Duration: Contract

Location: Admin - 4430 Broad River Rd., Columbia, SC, 29210 (25% Remote) 

Job Description:

Scope of the Project:
The position will work as a Security Architect within the Division of Information Security and will assist with the implementation, integration, and operationalizing of security technologies. This position requires experience in information security architecture and solution design to assist in the strategic planning, designing, and implementation of new systems and changes in current systems in a secure manner. This position is expected to be needed for 12 months with the possibility of extension.

Daily Duties / Responsibilities:
• Logging and Event Management – Ensuring that appropriate security logs are ingested into the SIEM and/or log aggregation platform and properly parsed to support security operations.
• Responsible for planning, designing, development, and implementation of enterprise security architecture solutions that align with business goals and risk tolerance. Leveraging state-approved processes and technologies wherever possible.
• Lead process definition, redesign, and/or technology innovation of security architecture, to ensure DIS solutions support the secure delivery of enterprise business architecture and services.
• Design, deploy, and manage countermeasures to known security threats and develop preventative mitigation strategies for new and emergent threats to enterprise data, networks, and associated services.
• Ensure, validate, and measure the consistent application of protective measures throughout the enterprise business application and infrastructure support environments. Take appropriate action to protect state data and technology services.

Required Skills (Rank in Order of Importance):
• Cyber security awareness and understanding
• Experience with Linux, Windows, network security protocols, and procedures
• Expert understanding of access control, logging, and reporting systems

Preferred Skills (Rank in Order of Importance):
• SIEM management
• Intrusion Prevention Systems (IPS)
• Security frameworks: NIST, CSF, CJIS, IRS 1075, CMS MARS-E
• Application security (AppSec)

Required Education/Certifications:
• Bachelor's degree in an information technology or information security-related field
• Six years of relevant work experience may be substituted in lieu of education
• Three years of experience in supporting large IT environments and/or system deployments

Preferred Education/Certifications:
• GSEC
• GCED