Aureon Consulting is current interviewing candidates for an Information Security Architecture opening with one of our favorite clients.
Responsibilities:
- Share best security practices.
- Oversee hands-on architecture work, primarily at the start of projects.
- Align security outcomes with business needs.
- Participate in the Architecture Review Board.
- Develop security procedures and standards.
- Track changes in the digital business and threat environments.
- Maintain security architecture artifacts.
- Ensure security in all solutions.
- Develop baseline security configuration standards.
- Validate IT infrastructure for security best practices.
- Conduct threat modeling.
- Maintain accurate inventory of systems and applications.
- Coordinate with compliance and privacy officers.
- Review network topology for least privilege access.
- Share best practices with other architects and security practitioners.
- Track and document security-related activities.
- Troubleshoot and remediate security breaches.
Qualifications:
- Polished communicator, able to present security practices to large audiences.
- Minimum 3 years of development experience.
- Experience securing web development languages and frameworks (e.g., JavaScript, Spring, Angular, Python, Java, C#, .NET).
- Experience with Kubernetes, Confluent Kafka, ActiveMQ, Azure Service Bus, Amazon SQS, API gateways.
- Understanding of database security technologies (e.g., MongoDB, Oracle, MS SQL).
- Experience in high-performance development teams using agile methodologies and modern DevSecOps practices.
- Knowledge of enterprise and back-office systems (e.g., CRM, HR, Microsoft 365). Security Certifications (CISSP, CCSP, GWEB, GSEC, or CCSK) preferred.
- Experience with architecture methodologies (e.g., SABSA, Zachman, TOGAF).
- At least ten years of IT experience with a security focus. Minimum of two years in a Security Architect or Engineer role.
- Extensive experience in Information Security, compliance, and assurance.
- Experience with threat modeling and cybersecurity principles.
- Ability to develop cybersecurity countermeasures and risk mitigation strategies.
Does this sound like you? Would you like to hear more? Apply today!
