Overview

Company Overview:

Creating value by bringing together the right people to achieve results is our motto. Our clients and employees say they choose to work with us because of how we work with them – with service that exceeds their expectations and a personal commitment to their success.

Our client, one of the twelve regional Reserve banks in the Fed System, seeks an accomplished Cloud Security Architect.

************************************************************************************************************************
*** Candidate must be authorized to work in USA without requiring sponsorship ***

Description:

Responsible for design and implementation of security features for the cloud.
Design applications to help the enterprise reduce attacks on cloud service data storage, create preventative features, and implement corrective controls when breaches do occur.
Responsible for helping build and implement security controls throughout the environment to support automated builds and deployments of secured applications.
Responsible for recognizing and identifying patterns and threats that could compromise application or data integrity.
Evaluate architectural challenges and issues inherent in mitigating risk of system compromise.
Develop policy and relevant guidelines and procedures (to be incorporated into the Security Manual) to define the minimum cloud development, security, and operational requirements.
Develop a cloud security architecture and relevant recommendations for use for its internal and customer implementations that meet compliance and best practice.
This architecture must comprehend implementations in multiple cloud environments including but not limited to AWS, Azure, and the Google Cloud Platform (GCP).
It must address logical architecture, operation, monitoring strategy and methodology, security incident investigation strategy, future evolution, and maintenance of that architecture.
Fully document the cloud architecture and recommendations capturing all elements plus those determined to be critical to this effort.
Conduct a knowledge transfer of the cloud architecture, recommendations, and relevant implementation considerations and details through both formal and informal training.
Develop a CI/CD standard and reference architecture blueprint. The standard and reference architecture blueprint must incorporate automated processes and tooling to enable application and cloud migration, security code development, security testing and automation of security services (i.e. compliance as code, code analysis, testing, micro-segmentation), active application monitoring and vulnerability management.
The outcome is to create a standard for a secure CI/CD toolchain to automatically build, test, and deploy infrastructure and applications, and inject security using common security tools, patterns, and techniques.
Collaborate across multiple development and business teams to drive cyber security initiatives throughout the organization.
Conduct Joint Application Design and knowledge transfer sessions for product development and security teams.
Working closely with cross functional teams to embed security, logging, auditing, and support all applications hosted within the corporate and cloud environments.

Qualifications:

Candidate must have a minimum of three (3) years performing security architecture.
Candidate must have seven (7) years or more in enterprise level cyber security as a security architect and/or security engineer.
Candidate holds a current Certified Cloud Security Professional (CCSP) certification OR certifications both as an AWS Professional and a Microsoft Certified Solutions Expert.
Experience designing, configuring, implementing and leveraging cloud services models such as SaaS, PaaS, and IaaS for system security.
Experience with the development, deployment, and automation of application security solutions in an enterprise cloud-based environment.
Solid understanding of cloud security architectures and services. Deep understanding of OWASP Top 10 and CWE/SANS Top 25.
Knowledge of technical security control environments and compliance frameworks including CSA, ISO 270001, NIST.
Experience in creating detailed solution design documents & diagrams.
Demonstrated ability to facilitate automation and integration through scripting in PowerShell, Python, Perl, highly preferred.
Ability to analyze and assess complex technical plans (i.e. security compliance standards).

************************************************************************************************************************

I’d love to talk to you if you think this position is right up your alley.

If you’re looking for rewarding employment and a company that puts its employees first, we’d like to work with you. We’re driven, people driven.

Satwinder Singh
Lead Technical Recruiter

Tel: 925-297-6495

Email:

NOTE: Evergent Group provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Applicants, with criminal histories, are considered in a manner that is consistent with local, state and federal laws.


More Jobs: