Role: Information Security Architect Location : Media, PA Duration : 6 Months
Experience: Minimum 10+ Years
Highlights: Expectation is candidate who is a Senior Technical architect which very good technical knowledge on AWS and DevSecOps. Ability to automate configuration management. Have broad understanding of programming languages, DB, Application security (SAST DAST), container security, scripting knowledge
Job Summary: In consultation with the Information Security, Development and Infrastructure teams, the Security Engineer Contractor will help integrate information security requirements and controls as captured in security policies, standards and best practices into current and future architectures and designs. The Security Engineer will help in detecting and addressing (reactively and proactively) risks and vulnerabilities in Customer’s IT landscape. Play a key role in driving the evolution of Customer’s technical architectures and IT operations and ensure that security controls are embedded throughout future designs and plans.
Required Skills:
- Bachelor’s degree in Information Technology or a technical discipline (e.g., engineering) preferred, or technical certifications, or related experience
- Certified in one or more of the following preferred: CISSP, CISA, CISM, CEH, technology specific (proxy, data loss prevention, firewall, etc).
- Minimum of 7+ years working in Information Technology Security.
- Working knowledge of information security concepts and technologies such as: least privilege, networking, network segmentation, firewalls, IPS\IDS, network analyzers, encryption technologies, proxies, etc.
- Proven work experience as a system engineer or system security engineer 6. Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols
- Cloud security (AWS - Azure) architecture, environment, and WAF experience
- Experience with container management and containerization technology.
- Experience on Authentication, Single Sign-On Infrastructure (AD, Azure AD, VDS, Ping Federate); Experience implementing multi-factor authentication, single sign-on, identity management or related technologies
- Extensive experience on authentication and authorization strategies using SAML/OpenID/OAuth;
- Extensive experience in usage related Identity & Access Management & defining standards around data at & data in transit - encryption, authorization, authentication, and security mechanisms, especially the foundational elements of the Public Key Infrastructure.
- Experience in building and maintaining security controls
- Detailed technical knowledge of application, network, database and operating system security
- Hands on experience in security systems, controls and concepts 15. Experience with network security and networking technologies
- Working knowledge of sub netting, DNS, encryption technologies and standards, VPNs, VLANs, VoIP and other network routing methods
- Network and web related protocols (TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols, etc.) 18. Advanced Persistent Threats (APT), phishing and social engineering, network access controllers (NAC), gateway anti-malware and enhanced authentication
- Thorough understanding of the latest security principles, techniques, and protocols
