About The Role
We are seeking a highly skilled Security professional to lead the design and implementation of robust security architectures across application, infrastructure, and operational domains. This role requires a strategic thinker with hands-on experience in security technologies, vulnerability management, and process improvement.
Key Responsibilities
- Design comprehensive security architecture blueprints covering DevSecOps, application, infrastructure, and operational security.
- Define processes, provisioning models, and interfaces; provide expert recommendations for secure application interactions.
- Build and manage workplans, driving cross-functional teams toward successful execution.
- Lead and execute security vulnerability scanning activities including HCR, NVA, Pen Testing, SAST, and DAST.
- Implement and operationalize security tools such as HSM, EDR, DLP, and enterprise antivirus solutions.
- Secure container orchestration platforms (OpenShift, CloudFoundation, Kubernetes), including traffic monitoring, image security, and repository protection.
- Architect and secure enterprise-scale Big Data environments using role-based access controls, DLP, and monitoring tools.
- Oversee operational security processes including OS and application patching, housekeeping, archival, and system hardening.
- Utilize and manage tools such as Thales CipherTrust, DigitalGuardian DLP, vmWare CarbonBlack, TrendMicro DeepSecurity, Tenable Nessus, and Burp Suite Enterprise.
Required Qualifications
- Bachelors degree in a relevant field.
- Minimum 5 years of experience as a Security Solution Architect/Security Delivery.
- Professional certifications such as CISSP, CCSP, or CCSK (or equivalent).
- Specialization in 12 cybersecurity domains (e.g., IAM, cloud security, container security) with broad knowledge across other areas.
- Familiarity with government security standards and compliance processes (SSAT, vulnerability scanning, DAST/SAST).
- Ability to articulate and defend security posture to ACISO and other stakeholders.
- Experience working with cloud security tools and environments.
