Sr. Cyber Security Lead / Engineer

Description:
At Client, you will help advise on strategic initiatives, programs, and projects to create business value in a risk-based and agile manner.
You are pragmatic and practical in your understanding of security and associated risks, but also willing to know when to pull in experts and escalate. You are passionate about security and risk management. You see security as an enabler and differentiator to enable the business through innovation, not a step in the compliance process.
You work with the business and technology partners to achieve goals and objectives in a secure manner with a heavy forward lean on modern data and technology architectures.
You will lead a team of dynamic and talented Information Security professionals who want to learn from your experience and skills. You collaborate and innovate with other teams within Client to push the envelope.
You are an advocate in the value of data driven business decisions and products, as well as comfortable with big data and cloud based technologies and tools, proactive protective methods, and concepts like, Cloud services, Containers, Docker, Microservices, mobile security , Serverless, APIs, DevOps, micro-segmentation, tokenization, encryption, machine learning/artificial intelligence and data analysis/modeling.

Responsibilities:
These are 2 positions now, one for an Architect and another for Sr. Level Cybersecurity Engineer
Hands on Sr. Cybersecurity Architect & Engineer role with strong Cybersecurity background
Supporting the technology who is developing, analyzing the issues and determining the risks

Act as a central point of contact for a domain in business to the rest of Client’s Information Security and Risk Management
Coordinate and execute proactive Information Security consulting to the business and technology teams covering Application Security, Infrastructure security, User Access Management, Resiliency, Data Security ns Network Architecture.
Act as a Technical lead to a team of Information Security Consultants to provide subject matter expertise to both business and development teams
Serve as an expert and thought leader in Client’s Information Security capabilities, solutions, policies, procedures and standards
Educate and influence executive leadership and associates to effectively leverage security capabilities and solutions to mitigate risks and emerging threats
Escalate and manage cyber security risk as the primary point of contact for versatile and dynamic line of business area
Lean in as a change agent to shift security risk identification and solutions left in enterprise processes, through coordination and execution of proactive Information Security consulting practices
Drive innovation activity as an outcome; partner extensively with other Cyber organizations such as Security Engineering, to derive both Client and patent activity as outcomes
Provide regular updates and act as a trusted advisory to executive leadership with your line of business on the overall Information Security health and risk environment
Deliver Cyber agenda and integration of Information Security within business objectives for line of business area
Provide ad hoc support on special Information Security hot topics for the business
In addition to the qualifications listed below, ideal candidates should also have: Experience with data protection techniques and tools such as encryption, tokenization, cloud access security brokers. Experience in a regulated environment, specifically financial services industry experience is a plus.

Basic Qualifications:
Bachelor’s degree
At least 10 years of experience working in cybersecurity or information technology
At least 7 years of experience providing guidance and oversight of Security concepts
At least 7 years of experience performing security risk assessments and security architecture reviews
At least 5 years of experience with Architecture, software design, networking or Cloud infrastructure
At least 5 years of experience with cloud security engineering

Preferred Qualifications:
Master’s Degree in Computer Science, Information Systems, Engineering or similar fields
12+ years of experience with Architecture, software design, networking or Cloud infrastructure
Experience building software utilizing public cloud (e.g. AWS, GCP, Azure)
Familiarity with Cloud patch management practices such as system rehydration and image management
Experience utilizing Agile methodologies
Experience with Software Security Architecture
Experience with Application Security
Experience with Threat Modeling
Experience with Penetration Testing and/or Vulnerability Management
Experience with integrating SaaS products into an Enterprise Environment
Experience with securing Container services
Splunk-Fu / Enterprise Monitoring experience
Financial services industry experience
Experience in Offensive and/or Defensive Security techniques
Experience in a regulated environment
Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), AWS Certified Solutions Architect