IT Security Architect

GMAC Auto Insurance   •  

Dallas, TX

Industry: Insurance


5 - 7 years

Posted 393 days ago

POSTING ID: 1632/1272/10224

Primary Purpose:

The IT Security Architect is a senior role on the team responsible for the daily monitoring and analysis of information collected from the company's information security systems and tools in order to preserve the confidentiality, integrity and availability of information resources and assets. This team seeks out weaknesses of the company's infrastructure by analyzing data and recommending solutions to remove, reduce or mitigate risk.

Essential Duties and Responsibilities:

  • Assists Cyber Security team members with the implementation and tuning of policies for systems such as IDS/IPS, SIEM and DLP
  • Works with Security Analysts in determining the proper systems and tools to protect company resources
  • Plan, implement and upgrade security measures and controls
  • Establish plans and protocols to protect digital files and information systems against unauthorized access, modification and/or destruction
  • Reviews security event logs and alerts from security systems and tools such as firewall, IDS/IPS, SIEM and DLP
  • Analyzes, documents and escalates security incidents per policy
  • Conducts examinations of computers, system logs, applications and network security events
  • Identifying and resolving root causes of security related problems
  • Performs vulnerability assessments and recommends remediation actions
  • Maintains knowledge of current security threats, vulnerabilities and mitigation techniques
  • Identifies new threats and evaluates mitigation actions
  • Analyze security breaches to determine root cause
  • Provide reporting on security exposures, including attempts and/or misuse of information assets and noncompliance
  • Verify protection levels against end user threats as it relates to desktops, laptops and mobile devices
  • Performs vulnerability testing, risk analyses and security assessments
  • Manage network intrusion detection and prevention systems
  • Maintains knowledge of HIPAA, PCI, SOX, ISO27001 and NIST Cybersecurity Frameworks
  • Participates in Disaster Recovery and Business Continuity planning and testing
  • Provides reporting for trending and key performance indicators related to the information security program
  • Participates in the development and maintenance of security awareness training
  • Assists with the development of corporate security policies and procedures
  • Other duties as assigned

Minimum Skills and Competencies:

  • B. S. in Computer Sciences or equivalent experience
  • 6 years of experience as a Security Analyst or similar role
  • Demonstrated knowledge of HIPAA, PCI, SOX, ISO27000 and NIST Cybersecurity Frameworks
  • Experience managing IDS/IPS, penetration and vulnerability testing
  • DLP, anti-virus and anti-malware
  • TCP/IP, computer networking, routing and switching
  • Firewall and intrusion detection/prevention protocols
  • Windows, UNIX and Linux operating systems
  • Network protocols and packet analysis tools
  • Demonstrated detailed oriented self-starter and the ability to work independently with limited supervision and limited direction, and in collaborative team environments
  • A strong ability to multi-task and manage varying priorities and projects
  • Excellent interpersonal, verbal, and written communication skills with the ability to communicate security risk and compliance related concepts to a broad range of technical and non-technical staff
  • The ability to provide support after normal business hours as needed

Desired Skills:

  • Tripwire Enterprise, Tripwire IP360, Nessus, BeyondTrust Retina, Qradar, Trustwave TrustKeeper, Proofpoint, McAfee ePO/HBSS
  • Experience with high-level programming languages (e.g. Java, C, C , C#, python) and web application development (JavaScript, PHP, ASP)
  • Security , CompTIA, CCNA, CCNA Security, ENSA, CEH, CISSP, CISM, CEH, ECSA, GSEC/GCIH/GCIA - GIAC certifications
  • Knowledge of Cloud computing, SaaS models and Security Information and Event Management (SIEM)