Security Architect

VULNERABILITY MANAGEMENT PLATFORMS AND PROCESSES DATA LOSS PREVENTION (DLP) SOLUTIONS SECURITY AWARENESS AND TRAINING PLATFORMS SUPPORT THE DEVELOPMENT AND MATURATION OF THE ENTERPRISE VULNERABILITY MANAGEMENT PROGRAM, INCLUDING SCANNING, REPORTING, REMEDIATION TRACKING AND METRICS. BUILD, DEPLOY, CONFIGURE, AND MAINTAIN LINUX-BASED SECURITY SENSORS AND RELATED ENDPOINT MONITORING TOOLS. ASSIST IN THE INTEGRATION AND AUTOMATION OF DISPARATE SECURITY AND ENTERPRISE IT TOOLS USING SCRIPTING AND ORCHESTRATION TECHNOLOGIES. COLLABORATE WITH SECURITY ARCHITECTS TO DESIGN AND IMPLEMENT ENTERPRISE SECURITY SOLUTIONS THAT ALIGN WITH LEADERSHIP S BUSINESS GOALS, REGULATORY REQUIREMENTS AND ORGANIZATIONAL RISK TOLERANCE. DESIGN, DEPLOY AND MANAGE COUNTERMEASURES TO ADDRESS KNOWN SECURITY THREATS AND CONTRIBUTE TO MITIGATION STRATEGIES FOR EMERGING THREATS TO ENTERPRISE DATA, SYSTEMS AND SERVICES. ENSURE CONSISTENT APPLICATION OF SECURITY CONTROLS ACROSS ENTERPRISE INFRASTRUCTURE AND APPLICATIONS; VALIDATE CONTROL EFFECTIVENESS AND RECOMMEND IMPROVEMENTS. SUPPORT INCIDENT DETECTION AND RESPONSE ACTIVITIES THROUGH MONITORING, LOG ANALYSIS AND REPORTING. DEVELOP TECHNICAL DOCUMENTATION, IMPLEMENTATION GUIDES AND STANDARD OPERATING PROCEDURES AS NEEDED. PERFORM OTHER DUTIES AS ASSIGNED IN SUPPORT OF THE DEPART OF ADMINISTRATION S DIVISION OF INFORMATION SECURITY.

ADDITIONAL DUTIES & SKILLS: STRONG UNDERSTANDING OF ENTERPRISE SECURITY ARCHITECTURE AND ENGINEERING PRINCIPLES. KNOWLEDGE OF CYBERSECURITY BEST PRACTICES, THREAT DETECTION, AND DEFENSIVE SECURITY STRATEGIES. EXPERIENCE WITH LINUX AND WINDOWS OPERATING SYSTEMS, INCLUDING SYSTEM HARDENING AND SECURITY CONFIGURATION. UNDERSTANDING OF NETWORKING CONCEPTS, SECURITY PROTOCOLS, AND SECURE SYSTEM DESIGN.

5+ YEARS OF EXPERIENCE IMPLEMENTING AND SUPPORTING ENTERPRISE SECURITY TOOLS (SIEM,CRIBL, XDR, VULNERABILITY MANAGEMENT, DLP, ENDPOINT SECURITY).

5+ YEARS OF EXPERIENCE DEVELOPING AUTOMATION AND INTEGRATIONS USING SCRIPTING LANGUAGES SUCH AS PYTHON AND BASH.