Description

Responsibilities:   

 

  • Design, implement and support various on-premise or off-premise cloud security solutions/technologies with a specific focus on Amazon Web Services (AWS), Azure, GCP, other cloud offerings 
  • Design technical solutions for Identity and Access Management, API Security, Logging and Monitoring, Network and Endpoint Security and Key Management 
  • Design solution architecture in conformance to client’s standards 
  • Perform information security risk assessments and threat models 
  • Remediate risk by designing, engineering, and implementing controls defined by risk assessment findings 
  • Run enterprise projects for IT Security and evaluate various proof-of-concept initiatives 
  • Interface with various teams such as management, architecture, applications development, engineering, deployment, and operations on a regular basis 
  • Draft technical designs, system deployment plans, new processes and procedures, technical risk remediation efforts, and support documentation 
  • Work with architecture and engineering resources to research, evaluate, and select technologies/solutions based upon business needs and current standards 
  • Develop security requirements and test plans for various security solutions followed with assistance during validation. 
  • Assist in investigations and response to security incidents if required 
  • Troubleshoot potential operational issues related to security solutions 
  • Establish and manage relations with vendors 

 

Required Skills: 

 

  • 5+ years of demonstrated security experience in a combination of technical engineering, architect, leads, or enterprise engineering roles 
  • 2 + years of demonstrated experience in cloud security (experience with AWS or Azure IaaS cloud desired) including but not limited to IAM, Secrets Management, Key Management, Certificate Management, Intrusion Prevention Systems, Logging and Monitoring, Configuration Management Security, Scripting Security, API Security, etc. 
  • 3 + years of demonstrated experience in network security 
  • Identity and Access Management 
  • Federation and Single Sign-On (e.g., SAML, OAuth) 
  • Directory Services Authentication Protocols (e.g., LDAPS, Kerberos, etc.) 
  • API Security including API Gateway Security 
  • User and Entity Behavioral Analytics 
  • Reverse proxy architecture and third-party authentication architecture 
  • Python scripting a plus. 
  • Experience with regulatory requirements such as PCI, GLBA, HIPAA, and SOX 
  • Experience working with Enterprise Architecture standards and processes 
  • Proven experience with the creation of technical diagrams and documentation 
  • Ability to establish priorities, work independently and proceed with objectives 
  • Strong communication skills to work with a collaborative cross-functional team of peers and departments within the company 
  • Strong motivation and desire to learn 
  • Strong organization skills and attention to detail 
  •  IDS/IPS 
  • NGFW 
  • Packet Aggregation Technology (Network Packet Broker) 
  • SSL decryption technology and PKI 
  • Wireless Security 
  • Web application firewalls and proxies 
  • Endpoint security 
  • Software-defined networking security and micro-segmentation 
  • Experience with B2C Customer Identity Access Management for Voice including but not limited to Authentication and Authorization (Call Center, IVR, IOT, Mobile, Web, etc.) 

 

Preferred Skills:  

 

  • SIEM and Data Analytics 
  • Email Security 
  • DLP 
  • Mobile Security 
  • Virtualization Security 
  • Cloud Orchestration Security 
  • Encryption 
  • Privileged Access Management 
  • Threat modeling (e.g., using MITRE’s ATT&CK threat framework) 
  • Visibility and Cloud metering, performance management 
  • Customer authentication and anti-fraud control design 
  • Organized with attention to detail 
  • Ability to manage and run enterprise projects 
  • Self-starter 
  • Familiar with IT Risk Control Standards and Frameworks (e.g., ISO 27001, NIST SP800-53, NIST SP800-63, OWASP, etc.) 
  • Good documentation skills 

 

Required Education:  

 

  • Bachelor’s in Computer Science, MIS or related field 

 

Preferred Education: 

 

  • CISSP certified 
  • Certifications from Cloud Security Alliance, Amazon (AWS), and Microsoft (Azure) 
  • Experience in financial services 
  • Coding/scripting skills 
  • Customer authentication and anti-fraud experience 

Key Skills
Education

Any Graduate

Back To Jobs