Core Consulting, Inc.

Description

The Senior Information Security Architect is responsible for developing and maintaining robust security architectures and strategies for safeguarding the organization's cloud-based infrastructure, applications, and data. This role requires a deep understanding of cloud security technologies, compliance standards, and best practices to ensure the confidentiality, integrity, and availability of sensitive information. The Information Security Architect will collaborate with cross-functional teams to design, implement, and manage security solutions in cloud environments.

Essential Functions
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Develop and implement a comprehensive security architecture for on-premises and cloud technologies that are aligned with the CISO’s overall strategy for the information security organization.
• Stay current with emerging on-premises and cloud security threats, vulnerabilities, and trends to proactively address potential risks.
• Actively participate within the technology Committees where solutions are evaluated for the enterprise
• Design and document secure on-premises and cloud security architectures, considering multi-cloud and hybrid cloud environments.
• Create and maintain security reference architectures, patterns, and guidelines.
• Understand and participate in the configuration of solutions and strategies that satisfy NIST Cybersecurity Framework control objectives in collaboration with the department’s GRC team.
• Identity and Access Management (IAM)
• Data Protection
• Security Operations
• Security Testing and Assessment
• Security Awareness and Training
• Vendor and Third-Party Risk Management
• Strategy Planning

Qualifications

• College diploma or university degree in the field of computer science or management information systems is preferred.
• A minimum of 10 years IT experience; at least three of those years focused on IT security, infrastructure, cloud or application-level vulnerability testing and remediation
• Strong understanding of enterprise, network, system, distributed application and application-level security issues.
• Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols).
• Understanding of the system hardening processes, tools, guidelines and benchmarks (including MITRE ATT&CK framework).
• Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security.
• Basic knowledge of Linux, Windows, systems
• Coding and/or scripting experience required
• Working knowledge of a range of diagnostic utilities
• Exceptional written and oral communication skills
• Exceptional interpersonal skills, with a focus on rapport-building, listening, and questioning skills
• Strong documentation skills
• CISSP Certification preferred
• Cloud Architect Certification preferred
• Cloud Security Certificate preferred
• AWS, Azure, or Google Cloud Platform experience is a requirement for the senior position within the organization
• Implementation experience with privileged access management (PAM) solutions.

Supervisory Responsibility

This position may have supervisory responsibilities.

Work Environment and Physical Demands

This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines.

Position Type/Expected Hours of Work

This is a full-time position with a work schedule of Monday-Friday with some schedule variations of weekday, weekend, and sometimes monthly on-call duties as needed.

Travel

This position will require up to 5% local travel.

EEO Statement

We provide equal employment opportunities (EEO) to all applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. We comply with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.

California Privacy Notice

"As an employer of California residents, we are dedicated to protecting your privacy rights. Any personal information you provide during the application process will be used solely for permitted internal purposes and will be handled in accordance with applicable privacy laws. By applying to this position, you consent to the collection, use, and disclosure of your personal information as described in our Employee Privacy Notice."

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

Job Type: Full-time

Pay: $125,000.00 - $175,000.00 per year

Benefits:

• 401(k)
• Dental insurance
• Health insurance
• Paid time off

Work Location: In person