Professional certifications desired such as CISSP, Certified Ethical Hacker, or SANS GIAC.
Minimum 8 years of experience in Information Security, ideally as an Architect/Senior Engineer.
Familiarity with industry best practices like NIST, NSA, and OWASP.
Strong knowledge of information systems vulnerability management processes and technologies.
Proven experience in developing security policies and standards, and implementing related tools.
Requires technical knowledge of at least five areas including Microsoft technologies, SQL Databases, and Application Development SDLC.
Strong understanding of network security, particularly with Cisco technologies.
Responsibilities
Research and advocate for new security technologies and architectures.
Evaluate and develop secure solutions based on security architectures.
Communicate security risks and solutions to partners and IT staff.
Perform security checkpoint reviews to ensure compliance with requirements.
Serve as a security expert in application and network development projects.
Research advancements to enhance security solutions aligned with standards.
Assist in responding to audit requests and issues.
Benefits
Work in a dynamic environment with diverse technology considerations.
Opportunity to stay at the forefront of security advancements and practices.
Engage in project teams to influence security policies and standards.
Contribute to a range of security technologies and tools.
Professional development through exposure to industry best practices and new technologies.
Full Job Description
IPS Architect
Duration: 12+ Months
Location- Atlanta, GA
RESPONSIBILITIES:
Researches, designs and advocates new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners and vendors - i.e. Intrusion Prevention Systems, Security Incident and Event Management Systems, Network Forensics, etc.
Evaluates and develops secure solutions, based on approved security architectures. Analyzes business impact and exposure, based on emerging security threats, vulnerabilities and risks.
Communicates security risks and solutions to business partners and IT staff.
Perform security checkpoint reviews, ensuring security requirements have been identified and adequate testing performed
Serves as a security expert in application development, database design, network and platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices.
Researches technological advancements to ensure that security solutions are continuously improved, supported and aligned with industry and company standards.
Assist in responding to audit requests and issues
QUALIFICATIONS:
Professional certifications desired such as: CISSP ( Certified Information Security Systems Professional), Certified Ethical Hacker, SANS GIAC ( Global Information Assurance Certification), or similar
Minimum of 8 years' experience in Information Security, with proven experience in an Information Security Architect/Senior Engineer role
Familiarity with Industry Best Practices e.g. NIST, NSA, SANS, OWASP, etc.
Requires strong knowledge of:
Information systems vulnerability management processes and technologies
Quality and process improvement disciplines
Recognize standards such as ISO2700x, COBIT, PCI-DSS, ITIL V3, COSO, CMMI and TOGAF
Compliance aspects of GLBA, EU Data Protection Directive, Sarbanes-Oxley and other relevant laws and regulations
Solid understanding of security principles and technologies: Firewalls, Web/E-mail Proxies, IPS/IDS, SIEM tools, Sourcefire, Office365
Proven experience with:
Developing information security policies and standards
Implementing and configuring information security tools
Developing and improving information security processes
Business Continuity Planning and Disaster Recovery
Requires strong technical knowledge and Information Security experience with at least five (5) of the following:
Microsoft technologies
SQL Databases
Networks
Middleware
Scanning (must have heavy scanning experience) - scanning with dynamic code
Secure coding
Vulnerability Management
Application Development SDLC
This is a tactical security solutions role where you will be designing and figuring out how to meet security standards
Strong understanding of information security concepts, threats, vulnerabilities, and controls
Network security experience with Cisco technologies, Routers, Switches, and Firewalls
Flexibility and adaptability in the face of changing priorities; ability to evaluate and manage risk; ability to negotiate resolutions of conflicting security and business objectives
Demonstrated ability to provide detailed communication to management and peers, the ability to work independently, and the ability to manage multiple projects with competing priorities.