Security Solutions Architect Job Description Template
Our company is looking for a Security Solutions Architect to join our team.
Responsibilities:
- Policy and procedures for the management of host security tools and activities;
- PROJECTS and ARCHITECTURE;
- A framework for classification of information assets based on sensitivity and criticality to operations;
- A policy and procedure framework addressing third party risk management;
- Perform vulnerability testing, risk analysis and security assessments;
- Define, implement and maintain corporate security policies, procedures and operational guides;
- Develop procedures and requirements for secure software configuration, security testing and securing development environments;
- Procedures for performance of cybersecurity monitoring functions across various system and application types;
- Processes to assess threats related to emerging technologies and mobile platforms AWARENESS;
- A formal cloud security policy that is aligned to industry standards and leading practices;
- Policies and procedures for management of the Business Continuity and Disaster Recovery program;
- A process to identify devices that do not have active end point protection;
- Processes for providing general privacy training, communicating policy changes and disclosing personal information;
- A comprehensive framework of policy and procedures for asset management activities;
- Process for identifying the business processes and systems that process personal information.
Requirements:
- Expertise implementing security solutions in public cloud IaaS/PaaS;
- Excellent English written and oral communication skills;
- Proficiency implementing security configurations in Office 365;
- Methods and identification tools for risks and security threats;
- Experience designing and building secure software systems;
- BS degree in Mathematics, Statistics, Computer Science or Engineering or equivalent practical experience;
- Proven track record dealing well with ambiguity, prioritizing needs and delivering measurable results in an agile, fast-paced environment;
- Proven understanding of security controls and technologies including SIEM, DLP, WAF, IPS, and firewall;
- Experience in Application security, preferably from a blue-team perspective;
- Understanding of IETF security protocol landscape and development practices;
- Excellent documentation and verbal skills;
- Experience with one or more of the following programming languages: C#, Java, C/C++ and/or Python;
- Experience with cloud service offerings and related security controls: Google, AWS or Azure;
- Experience with security design for multi-service enterprises;
- Well versed and knowledgeable in compliance and security standards and guidelines including: SOX, NIST, CIS, ISO 27001/2, PCI DSS.