We have the following need for an auto company. The position is remote for now.Contract can vary from 1-3 years.
Role Summary: The Security Architect will assure that security principles and company security policies are adhered to in the design and delivery of systems and software. Years of Experience: 7+ years of professional experience in information technology, with at least 3 years of experience in planning and execution of security controls in complex environments. Role Responsibilities
Lead and/or contribute to security design of various Cloud and Mobile applications and environments, at both application level as well as the virtual infrastructure level.
Collaborate with other teams and departments to fit security requirements with other constraints, such as business requirements or technology limitations.
Educate and mentor project team members in areas of security best practice and company security policies.
Create and maintain architecture design artifacts such as diagrams and documentation.
Interpret output of activities such as penetration tests and application security scans, translating into actionable remediation requirements.
Maintain and expand knowledge of best practices and emerging trends in both general information security as well as key specialty areas such as cloud and mobile security.
Provide feedback and approval for system and application designs and architectures as relates to adherence to security principles and company security policies.
Plan and implement proof-of-concept, pilots, and reference architectures.
Required Skills:
Background in securing cloud systems in theory and practice, including security architecture design concepts.
Understanding of DevOps principles and "shift left" philosophy.
Strong experience with common web application security concepts, such as the OWASP Top 10, and their practical implementation.
Experience with multi-factor authentication, single sign-on, identity management and related technologies.
Experience with vulnerability management methodologies and implementations.
Solid understand of intrusion detection and prevention solutions and techniques.
Experience with encryption technology and industry best practices for practical implementation.
Understanding of application development secure coding techniques.
Hands-on experience implementing modern security architectures.
Knowledge and practical experience of TCP/IP networking fundamentals and related network security concepts.
Solid analytical/problem solving skills with capability to identify solutions to unusual and complex problems.
Excellent planning, organization, and time management skills.
Ability to inform, educate and influence managers and employees to support goals and initiatives.
Ability to work independently with minimal supervision.
Excellent verbal, written, presentation and other interpersonal communication skills.
Ability to convey complex technical concepts effectively to a variety of audiences.
Education: • Bachelor’s Degree or a combination of formal education and work experience equaling a Bachelor’s Degree
