Job Title: Cloud Security Architecture Specialist
Specific role responsibilities include:
-Provide security expertise to engineering and development teams, acting as a project team member providing consulting advise ensuring security requirements are integrated in the project.
-Provide specific security expertise to engineering teams by identifying and creating patterns and blueprints for repeatable security, infrastructure and application instantiations. Blueprints and patterns may address such areas as network design, database access, authentication methods, encryption requirements, key management, entitlement design, identity management, logging, input validation, secure data transfer among others. This involves liaising with other technology subject matter experts to build consensus, outlining areas of improvement in written form and explaining concerns early on.oIdentify areas of risk on projects where security requirements cannot be fully addressed in the required time frame of the project.
-Document and present those risks to senior business, IT and Security team members.
-Help identify areas of security the firm might want to invest in improve IT security.
-Product security case reports to document and highlight specific risks along with potential mitigations.
Top Three Skills:
-Strong Information Security Background with strong experience in risk assessments and security architecture design and reviews
-Ability to influence and engage with senior management.
-Ability to write documentation for all types of audiences, from very specific technical guides to higher level research on technologies and vendors.
Required Skills:
-5 to 8 years of information security experience
-Excellent communication / interpersonal skills to be able to interact at all levels & be effective as part of a broader team, capable of taking broad objectives and create and execute a concrete plan.
-Ability to manage expectations and handle high-pressure situations with tight deadlines.
-Experience in an information security (application and/or infrastructure) role in an enterprise environment.
-Ability to quickly adapt to changing priorities and demands .
-Ability to work independently, and self motivate.
-Demonstrated ability to see through sales pitches to find inconsistencies and omissions to quickly identify the most effective areas to look for controls gap, and the technical ability to follow through.
Skills Desired:
-Excellent Amazon AWS skillset with hands-on experience.
-Experience with technologies for protecting data at rest and in transit along with key proper management practices.
-Experience with PKIoExperience with Modern Authentication Technologies such as OAuth2, OpenID Connect and SAML 2.0oExperience with Docker or other Linux Container technologies.
-Experience with Kubernetes or similar workload orchestration .
-Knowledge of traditional network technologies, such as firewalls, NAT, Load balancers, and web proxies.
-Experience with Software Defined Networking Technologies.
-Experience with infrastructure as code tools, such as Hashicorp Terraform.
-Experience with CI/CD pipelines (re: automation?).
-Knowledge of traditional security concepts such as patch/vulnerability management, input validation, authentication, authorization