Security Architect

This position will work with members of the Information Technology teams with a focus on security architecture and governance, providing designs, builds, testing and oversight for security solutions across the organization to align client’s IT systems with the latest security standards and protect systems from security threats or a cyber security breach.

Company Profile

Client is a smaller medical device company that offers innovative, implantable devices.

Primary Responsibilities

  • Plans, researches, and designs security architecture for IT systems, application and integrations.
  • Designs security services in cloud-based programs based on pre-defined architecture frameworks
  • Maintains and improves the security posture of the Azure platform systems and services
  • Determines security protocols by evaluating company business strategies, security and regulatory compliance requirements.
  • Defines security controls, policies and appropriate role-based access to data, applications and systems 
  • Lead and coordinate the activities of others within nature and scope of IT Security and Security Architecture best practices.
  • Monitors alerts to ensure that data, apps, containers, infrastructure, and networks are protected.
  • Design access configurations within a cloud solution environments using security best practices and defense-in-depth principles.
  • Reviews system security measures and implements necessary enhancements and architectural guidance and changes to ensure security requirements and policies are adhered to.
  • Participate in project work; perform security specific project architecture tasks related to MS365/O365 and MS Azure environments, lead work streams.
  • Coordinate with network and cloud architecture teams to review and approve design and installation requirements for LANs, WANs, VPNs, firewalls, routers, and related network devices.
  • Verifies security systems by developing and implementing test scripts for verification of requirements.
  • Implement and use cloud native tools like Log Analytics, Azure Monitor, Azure Security Center and Azure Sentinel
  • Responds to, and investigate, escalated security incidents from SOC analyst teams to provides mitigations, remediation as well as thorough post-event analyses and lessons learned action plans
  • Responsible for conducting or coordinating regular testing and remediation of web applications, network and systems security.
  • Updates job knowledge by tracking and understanding emerging security practices and standards, participating in educational opportunities, reading professional publications, and participating in professional organizations.
  • Works directly with departmental leaders to ensure end user compliance with IT and security standards.
  • Ensure enterprise alignment to regulatory requirements and cyber security frameworks such as SOX, SOC2, ISO 27k

Minimum Qualifications:

  • Bachelor’s degree in Cyber Security/Computer Science or a related degree 
  • Minimum 5 years hands-on experience in IT Security with Security architecture experience in Azure environments.
  • Proficient in all aspects of cloud Security including identity and access management, organizational structure and policies, technologies to provide data protection, network security defenses, security logs, and incident response processes.
  • Thorough understanding of security concepts (Zero Trust Network, CASB, Cloud computing, SIEM, SOAR, PKI, DevSecOps, IAM and PAM,).
  • Strong technical skills Windows operating systems and scripting languages like Powershell, Python, .Net, …
  • Experience with Infrastructure as Code (IAC) and Terraform in Azure or other cloud environments.
  • Completed or actively pursuing certifications: Azure Security Engineer, CCSK, CompTIA Security+, GIAC or SANS certifications, MS Security and Azure certifications.
  • Network, system or application design, MS Azure expertise, implementation, and monitoring experience.
  • Experience with MS365 Intune MDM device and policy management.
  • SIEM experience, logging alerting, querying, dashboards, MS Sentinel
  • Experience working with vendors, auditors, assessors, 3rd party partners, affiliate and subsidiary organizations.
  • Experience with security standards and cyber security frameworks, NIST, ISO 27K, SOC 2  
  • Strong communication and time management skills, ability to learn quickly

Preferred Qualifications:

  • Masters degree in Cyber Security, Computer Science or related field
  • Experience in a regulated field such as medical device, healthcare/HIPAA experience
  • Prior participation in or responsibility for audits and assessments
  • Completed certifications & licenses or actively pursuing one or more industry related certifications – CCSK, CCSP, CISSP, CISM, CCFE, CCIE, CCNA
  • Experience with other Cloud Platforms like AWS and Google Cloud is nice-to-have 

APPLY NOW