Network Security Architect

RESPONSIBILITIES: OpenKyber has a client that is seeking a Security Architect in Davie, FL. Responsibilities:

• Lead the development of a strategic security architecture vision, including standards and frameworks that are aligned with overall business strategy using the current technology roadmap
• Participates in the writing of Security Standards and Policies
• Create security strategies to improve controls and architecture for critical security infrastructure including endpoints, mobile devices, containers, authentication and authorization, logging, and threat detection
• Provide subject matter expertise on infrastructure (on-prem and cloud), application, and database security
• Works with the business and IT from and security perspective - determines security requirements and infosec strategy by evaluating business strategies and requirements; Researching information security standards; Conducting system security, vulnerability analyses and risk assessments; Studying architecture/platform; Identifying integration issues; Preparing cost estimates
• Collaborate with Dev teams in designing and continuously improving the Secure Software Development Lifecycle (S-SDLC)
• Enabling and facilitating Proof of Concepts
• Maintain a deep technical knowledge of Microsoft data center technologies, including Active Directory, Office 365, Azure, and Windows Servers
• Migrate on-premises workloads to the cloud
• Manage cloud environments (Azure, AWS, Google Cloud Platform, etc.) to ensure optimal security, performance, scalability, availability, and operations
• Review existing architecture, identify design gaps, and requiring security enhancements; Coordinates with members of the IT and technology organization, as well as business, to plan, develop, implement and maintain compliance with Center for Internet Security (CIS) or other security configuration frameworks

• Bachelor's degree preferred in Computer Sciences, Information Technology, or related field
• At least one industry standard certification such as GSEC, Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM) or other security vendor certification
• Experience with container-based orchestration (Kubernetes and similar) and microservices architecture
• Experience of network design, mobile security, network and firewall security technologies and vulnerability management, scanning
• Experience managing project through the full system development lifecycle
• Working knowledge of Zero Trust Network Architecture (ZTNA)
• Practical knowledge of any combination of Payment Card Industry (PCI), GDPR, NIST standards, or ISO27000 series
• Knowledge of web application security, browser security models, and application security vulnerabilities such as the OWASP Top Ten
• Deep understanding of network attacks, DDoS, Phishing, email protocols/security/spam, encryption, authentication, logging and log analysis, IP and device reputation, and security rules and policies
• High degree of skill and knowledge in managing and part taking in incident response, Intrusion Prevention Systems, Intrusion Detection Systems, SEIM, Endpoint security solutions
• Team player able to work effectively at all levels of an organization with the ability to influence others to move toward consensus
• Clear ability to build strong relationships and establish trust with stakeholders at all levels
• Excellent verbal and written communications skills
• Strong leadership skills with demonstrated ability to prioritize and execute in a methodical and disciplined manner
• Multiple language abilities preferred - fluency in English (written and spoken) required
• Flexibility to travel as required up to 15% overnight travel

AD&D insurance, 401(k), Health insurance, Paid time off, Vision insurance, Health savings account, Dental insurance, Paid sick time, The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.

We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.

Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in OpenKyber's sole discretion unless and until paid and may be modified in its discretion consistent with the law.