Hope you're doing well.
I am reaching out to you regarding a job opportunity with one of our clients. Let me know your thoughts.
Role: IT Security Architect
Location: New York, NY, 10075 (Hybrid)
Job details:-
This position is expected to be the last level of technical escalation within the company for the assigned responsibilities.
Guides Cyber Governance and Information Protection team and makes informed security decisions on the design of infrastructure, systems and applications.
Works with tech leads and teams to ensure security is built into app development, network infrastructure and cloud systems. Work with necessary Information Technology groups to satisfy specific technology related issues.
Act as an Information Security liaison between the customers and all groups in Information Technology
Implements industry leading practices around cyber risks and Cloud security and perform security assessments of cloud platforms/environments using industry standard frameworks such as ISO, CSA-CSM and NIST
Designs and develops security policies, standards and procedures e.g. firewall rules, SSL/IPSec, security incident and event management (SIEM), data protection (DLP, encryption), user account management (SSO, SAML), and password/key management.
Identifies software weaknesses that could lead to exploitable vulnerabilities such as SQL injection, cross-site scripting, cross-site request forgery, buffer overflows, and use of hard-coded passwords, weak encryption, and sensitive data.
Seasoned professional with detailed technical knowledge of techniques, standards and state-of-the art capabilities for authentication and authorization, applied cryptography, security vulnerabilities and remediation.
Can advise on architecture decisions at technical and product level.
Adequate knowledge of web related technologies (Web applications, Web Services and Service Oriented Architectures) and of network/web related protocols.
Experience working with Cloud security posture management tools.
Constantly looking for better ways of solving security problems and designing the solution, not afraid of challenging the status quo.
Respond swiftly to all alerts, performing initial risk/impact assessments or escalating issues as appropriate
Follow change management controls and guidelines.
Support operating organizations during corporate emergencies. Participate in the Company's emergency management processes, cyber security and storm plans.
Perform other related tasks and assignments as required.
Must Have:
Antivirus
EDR
IDS/IPS
Implemented vulnerability management
SIEM