Job Seekers, Please send resumes to resumes@hireitpeople.com
Short Description:
The Information Security Architect is responsible for planning and maintaining enterprise-wide information security framework and architecture. The architect will ensure that the design/implementation of all business solutions meet security requirements
Complete Description:
Candidate will have experience in IT Security engineering and architecture, including hands on experience designing and deploying security solutions.
The candidate will report to the Information Security Unit and partner and collaborate with Information Security staff, the IT Enterprise Architect and IT staff to achieve a high-level of enterprise security and ensure that the design / implementation of all business solutions meet the Judiciary security policies, standards and applicable compliance mandates.
Strong knowledge in network security design, architecture and implementation.
Domain expertise in 3 or more of the following areas: network security, network architecture and routing, Windows platform security, UNIX/Linux platform security, encryption, threat management, application security, database management / security, data governance, entitlements management, identity and access management, data loss prevention, PKI, authentication technologies.
Ability to perform systems security or vulnerability analysis and design is a must. Guiding development teams to address these security issues.
Knowledge of routing protocols; understanding of Network Layer concepts and technologies, packet-level understanding of basic TCP/IP protocols, understanding of VPN technologies to include GRE and IPSec.
Detailed understanding and configuration experience of routing, firewall and load balancing technical capabilities. Through knowledge of IPS/IDS and Web proxies.
Knowledge of application security, authentication and access management.
Current knowledge of security threats and security tools.
Hands on experience with ethical hacking and incident response.
Experience with Security Audit project such as PCI DSS.
Demonstrated ability to communicate at multiple levels from highly technical to business.
Abilitiy to identify, understand and communicate complex network and security issues effectively.
Understanding of XML, Java, dotnet and scripting tools.
Years of Relevant Experience: 7 plus years
Preferred Education: 4 year college degree or equivalent technical study and Security Certifications a plus (ie CISSP, CISM, GIAC, CRISC, CCNP/CCNA)
Knowledge of security management framework such as ISO 27xxx and OWASP
Skills:
|
Skill |
Required / Desired |
Amount |
of Experience |
|
Network Security Design |
Required |
7 |
Years |
|
IT Security Architecture; designing and deploying security solutions |
Required |
7 |
Years |
|
Windows platform security |
Required |
7 |
Years |
|
UNIX Linux platform security |
Required |
7 |
Years |
|
Application security |
Highly desired |
5 |
Years |
|
Identity and Access Management |
Highly desired |
5 |
Years |
|
Threat Management, vulnerability analysis |
Highly desired |
5 |
Years |
|
Data Loss Prevention |
Desired |
3 |
Years |
|
IPS / IDS and Web Proxies |
Desired |
3 |
Years |
|
PCI DSS Compliance / Security Audit |
Desired |
|
|
|
Security Certification (CISSP, GIAC, CRISC, CCNP/CCNA) |
Nice to have |
|
|
