Title: Information Security Engineer
Remote
Duration: 12 months
Major Duties:
Support various security and technology projects as the security SME to ensure adherence to Federated Hermes architecture principles, security policies and standards.
Review project designs and proposals to identify applicable security requirements.
Identify security risks against applicable security requirements and establish recommended controls and processes.
Advise and enable project teams to make security decisions and provide advice and guidance, ensuring the effective use of common tools and patterns.
Work with technical teams to guide and support implementation of technical security controls.
Lead escalation and resolution of residual project risks.
Advise project go/no-go decisions for production go-live.
Produce relevant security architecture documentation and risk artefacts.
Knowledge, Skills, and Abilities:
Strong experience with Azure cloud and Office 365 platform capabilities.
Experience working with Intune and Azure Conditional Access policies.
Experience working with virtual server and desktop environments such as VMware and Citrix.
Familiarity with security architecture frameworks such as SABSA and TOGAF.
Familiarity with security frameworks such as NIST800, CIS, ISO27001.
Industry recognized technical certifications are desirable (CISSP, CCSP, CompTIA Security+, GIAC security essentials).
Microsoft technical certifications are desirable (Azure Solutions Architect, Azure Security Engineer, 365 Security Administrator, MCSE).
Familiarity with security and privacy regulations impacting financial services such as SOX and GDPR.
Excellent written and verbal communications skills.
ANY GRADUATE