Security Architect - Tarrytown, NY - Georgia IT Inc.
Tarrytown, NY
About the Job
Job Title : Security Architect
Location : Tarrytown, NY
Position Type : Full Time
Salary : DOE $115K/Year
Interview Process : Phone followed by Face to Face
U S Citizen, Green Card and GC-EAD
Position Description:
This position is responsible for leading security assessment and analysis, as well as design, integration, implement, administration and coordination with global IT teams of security technologies used to mitigate risk to our company. Evaluation, design, deploy and support of security tools and technologies covering but not limited to: Firewalls, load balancers, Reverse Proxies, VPN, Desktop and SIEM. The candidate will also be responsible for the creation and maintenance of best practices, identifying, evaluating, and reporting on information security risks in a manner that meets compliance/regulatory requirements specific to our business model and aligns with the risk posture of the enterprise. The Security Architect role will have key responsibilities in incident response and investigations that include delivering reports at both the technical and executive levels. This position requires self-motivation, excellent written n and verbal communication skills, a strong willingness to learn, and passion for the information security field. This person should be comfortable presenting to C level management.
Responsibilities and Duties: Responsibilities include but not limited to:
Required Qualifications: (e.g., education, skills, abilities, knowledge)
Preferred Hiring Qualifications:
Technical Skills:
We offer:
Location : Tarrytown, NY
Position Type : Full Time
Salary : DOE $115K/Year
Interview Process : Phone followed by Face to Face
U S Citizen, Green Card and GC-EAD
Position Description:
This position is responsible for leading security assessment and analysis, as well as design, integration, implement, administration and coordination with global IT teams of security technologies used to mitigate risk to our company. Evaluation, design, deploy and support of security tools and technologies covering but not limited to: Firewalls, load balancers, Reverse Proxies, VPN, Desktop and SIEM. The candidate will also be responsible for the creation and maintenance of best practices, identifying, evaluating, and reporting on information security risks in a manner that meets compliance/regulatory requirements specific to our business model and aligns with the risk posture of the enterprise. The Security Architect role will have key responsibilities in incident response and investigations that include delivering reports at both the technical and executive levels. This position requires self-motivation, excellent written n and verbal communication skills, a strong willingness to learn, and passion for the information security field. This person should be comfortable presenting to C level management.
Responsibilities and Duties: Responsibilities include but not limited to:
- Perform and lead ongoing overall and targeted Risk Assessment exercises of the corporate infrastructure working with IT Security, to identify and recommend solutions to security exposures.
- Perform and lead security investigations a directed by IT Security. Responsible for gathering and collating evidence and preform forensics analysis of security violations as needed.
- Document processes and procedures, based on industry standards and best practices, to be used in the configuration and operation of security tools/solutions.
- Prepare and present executive level presentations and updates on company security posture and direction on a regular basis.
- Monitor security centric solutions for security trends and anomalies. Technologies to be monitored include (but not limited to): firewalls, proxies, anti-virus, desktop encryption, SIEM and VPN.
- Administer security technologies such as firewalls, load balancers, proxies, anti-virus, desktop encryption, SIEM and VPN.
- Develop key metrics and regular reporting on security technologies that are being administered.
- Assist in the evaluation and selection of security tools/technologies/solutions.
- Provide support in developing, implementing, and maintaining detailed corporate information security policies, principles, standards, and procedures.
- Assist IT Security with security incidents and events, and coordinate the development of implementation plans and procedures to ensure that business-critical services are recovered in the event of a security incident.
Required Qualifications: (e.g., education, skills, abilities, knowledge)
Preferred Hiring Qualifications:
- A minimum of 10+ years of hands-on experience in information security with extensive experience in architecting and administrating security solutions.
- Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences.
- Knowledge and understanding of relevant legal and regulatory requirements, such as Sarbanes-Oxley Act (SOX), Personally Identifiable Information (PII) Protection and Payment Card Industry (PCI)/Data Security Standard.
- Project management skills: sizing, coordinating and executing projects.
- Practical problem solving skills and solid trouble shooting skills a must.
- Hands-on experience with security investigations, including conducting forensic analysis.
- Professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials.
Technical Skills:
- Firewall technologies (Checkpoint/Palo Alto)
- Load Balances (F5)
- Intrusion Detection/Prevention Systems
- Client/Clientless VPN
- Proxies (BlueCoat)
- Encryption (Safeboot, PGP)
- Network security
- Forensics (FTK, EnCase)
- Data Leakage Prevention
- Security Event Management
- Multi-factor authentication systems
- Anti-Virus/Anti-Malware detection software
- Mobile device security
- OS level Security (Windows, Linux, Unix)
- Vulnerability/Exploit Management
We offer:
- Progressive Compensation Package (base salary & bonus)
- Healthcare Benefits (Medical, Dental, Vision and Prescription Drugs)
- 401k with Employer Match OR Canada RRSP / Registered Retirement Savings Plan
- Paid Time Off
- Life Insurance and Disability Coverage
- Flexible spending account
- Professional working environment
- Employee referral bonus program
- On-going training & development
Source : Georgia IT Inc.