Security Architect Position - job id 30939


Your Way To Work™

Security Architect Position

Market Contract Rate

Downtown, NYC - Financial District



How to Apply

logo

Kyle Barlics


logo

(732) 791-4723


logo

(212) 616-4800 ext-580




A Contract position at a preeminent global financial services firm.

Pay Options: IC - Self Incorporated or w2.

Contact Kyle Barlics. call (732) 791-4723 / (212) 616-4800 ext.580 or email kyle@sans.com with the Job Code KTB30939 or Click the Apply Now button

Location: Downtown, NYC - Financial District.

Skills required for the position: SECURITY, AUDIT.

Optional (not required):SWITCHES, ROUTERS, UNIX

Detailed Info:

Lead SecArch deep dives with the requestor of the assessment

Prioritize risks identified in relation to business risks

Conduct assessment and provide technology risk/requirements to the requestor.

Areas covered: a.Authentication, Authorization, Auditing b.Application Security, Session Security, Vulnerability/Pen Testing items, Input Validationc.Secure data transport and storage

Periodically review security reference architecture (security blueprints) and conduct updates/enhancements

Participate in various Operational and Technology Risk governance processes

Assist in identifying new areas and opportunities of technology investment for the firm.


Skills and Experience/Soft Skills (Required):

Excellent communication skills: written, oral, presentation, listening

Ability to influence through factual reasoning

Time management: ability to handle multiple concurrent assessments, plan based deliverable management, strong follow up and tracking

Strong focus on delivery when presented with short timelines and increased involvement from senior management

Ability to adjust communication of technology risks vs business ris

Development/Computing Environment: Security Architecture Skills Required:

In depth knowledge of application, network and platform security vulnerabilities. Ability to explain these vulnerabilities to developers

Experience in conducting Information Security, IT Security, Audit assessments. Presenting the outcomes of the assessment and obtaining buy in

Strong focus on reviewing technical designs and functional requirements to identify areas of Security weakness.

The candidate must have working experience in the following application/network security domains:a.Authentication: SAML, SiteMinder, Kerberos, OpenIdb.Entitlements and identity managementc.Data protection, data leakage prevention and secure data transfer and storaged.App Security - validation checking, software attack methodologiese.Cryptography ? encryption and hashing

Even though the SecArch Integrator role is not a development role, the candidate must have previous background in programming, design and application architecture.

Desired:

Knowledge of standard network model and the risks that present at each layer, the functions of network equipment such as switches, routers, firewalls, proxies, vpn, and load-balancers, and to understand network architecture.

The candidate must have working knowledge of the primary operating systems (Unix, Windows, z/OS, Mac OS), the configuration and management of that platform at an enterprise scale, the security risks to that platform, and how to mitigate those risks

experience in testing.

The position offers competitive rate.


Job Id: 30939