Functieomschrijving Security Architect - Remote - 12 Month Contract Requirements Security Architect Job Description: We are looking for a technically capable security architect to be responsible for the design, building, testing, and implementation of security systems.
The security architect's responsibilities include reviewing our current security measures, recommending enhancements, identifying areas of weakness, and responding promptly to possible security breaches.
To be a successful security architect, you should be experienced in information security and IT risk assessment, with a strong understanding of security protocols, authentication, and security.
You should also possess strong interpersonal decision making and communication skills, and be able to work with a wide variety of people from the development teams to the Exco members.
Security Architect Responsibilities: • A thorough understanding of the organization's technology and IT systems.
• Planning, researching, designing, and supporting enterprise-class security architectures/systems.
• Developing, reviewing, and approving the installation requirements.
• Researching and designing solutions, and ensuring all personnel have IT access limited to their need and role in the organization.
• Developing project timelines.
• Validating the final security system and updating and upgrading it as needed.
• Establishing disaster recovery procedures and assisting with security breach drills.
• Responding quickly and effectively to all security incidents and providing post-event analyses.
• Monitoring and guiding the security team, cultivating a sense of security awareness, and arranging for continuous education.
• Remaining up to date with the latest security systems, standards, authentication protocols, and products in the industry.
• Align organizational security strategy and infrastructure with overall business and technology strategy • Identify, communicate and manage current and emerging security threats • Design security architecture elements to mitigate threats as they emerge • Create solutions that balance business requirements with information and cybersecurity requirements • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements • Provide supervision and guidance to a small but senior security team • Define, implement and maintain corporate security policies and procedures • Regularly communicate vital information, security needs and priorities to upper management • Security considerations of cloud computing, including data breaches, hacking, account hijacking, malicious insiders, third parties, authentication, APTs, data loss and DoS attacks • Demonstrated ability to identify risks associated with business processes, operations, technology projects and information security programs • Ability to function as an enterprise security subject matter expert who can explain complex topics to those without a technical background • Cloud computing experience (AWS) Security Zones, Key Management, CloudFront WAF and DDoS, Security Group Tags, Security Hub etc • Engage in 'ethical hacking', for example, simulating security breaches • Investigate security alerts and provide incident response • Monitor identity and access management, including monitoring for abuse of permissions by authorised system users.
• Work with and manage vendors in implementing their solutions and strategies in line with our business objective.
• Complete Security Supplier On-boarding assessments for Third Parties • Conducting Code pipeline reviews and building security into the continuous delivery pipeline • Develop and enforce Security patterns based on Policies and standards • Maintain and enforce banks cyber non-negotiables • Creation, implementation and maintenance of security policies, standards and procedures Security Architect Requirements: • A bachelor's or associate's degree in IT, computer science, or related field.
• Advanced IT security certifications may be advantageous.
• 10-15 years' experience in information security and IT risk management.
• A strong working knowledge of current IT risks, security implementations, and computer operating and software programs.
• The ability to interact with a wide range of people from different backgrounds and races.
• Excellent teaching, problem-solving, communication, and interpersonal skills.
• Extensive experience in information security and/or IT risk management with a focus on security, performance and reliability • Solid understanding of security protocols, cryptography, authentication, authorisation and security • Good working knowledge of current IT risks and experience implementing security solutions • Excellent presentation, written and verbal communication skills as well as business acumen and a commercial outlook • Cultivate a culture of security awareness, and continuing education of personnel to ensure security policies are adhered to at all times.
• Team player