Candidates « Blackmere Consulting
Specialized Recruiting Solutions Designed to Access Deep Talent Pools
Call Us: 208-932-2750

Candidates

Featured Positions

Sr. Security Architect

Job Title
Sr. Security Architect
Job ID
27022597
Description

Our client believes in the importance of a strong security culture and knows that protecting their competitive edge requires a groundbreaking approach and the resources to execute innovative techniques. Under the direction of the VP Security and with the funding and governance support from the Executive Committee, this team is pioneering a transformational, industry-leading three-pronged strategy, which includes:

  • A fully integrated cyber, physical and staff security operation
  • A complete overhaul of our technical and security environment, which will include migration to the cloud and major investments in next generation analytics
  • An innovative dynamic defense operating model that is proactive, predictive, automated and intelligent

We are looking to hire a talented, entrepreneurial security architect to bring this vision to life. Individuals who join the department’s transformative efforts will be on the forefront of the next generation of security and technology with vast opportunities for future growth.

The Security Architect will be instrumental in safeguarding the mission-critical intellectual property for this world-renowned firm. Accountable for designing and implementing new technology initiatives, you will work closely with operations and technical teams to on strategic security initiatives spanning physical, information technology, and staff risks. This individual will be closely aligned with the business and will take a hands on approach to assessing, architecting, and validating corporate initiatives and implementing risk mitigation controls. The Security Architect isa strong technologist and a key consultant on security, working extensively with world class security individuals across the organization that push the fold of security and technology.

Responsibilities Include:

  • Work closely with application, infrastructure and platform technology teams to deeply understand technology initiatives and strategies
  • Detailed assessment of individual technology projects through threat modeling and vulnerability analysis
  • Maintaining a high security bar thorough architecture and implementation of security controls at both enterprise and project levels
  • Build strong cross-organization relationships and effectively influence the security for the organization
  • Effectively communicate enterprise and project risks to senior management and ensure it is suitably managed over time
  • Consult with delivery teams to prioritize, select and drive adoption of new security technologies
  • Maintain knowledge in the information security field and suitably instruct internal team members
  • Advise senior management on information security issues, systems, processes, products and services

Our ideal candidate will have a degree and 5 or more years of experience working with enterprise level security architecture, risk assessment and SDLC (Secure Development Life Cycle). In addition, you must be an excellent problem solver with the ability to convincingly articulate vision and strategy for complex and innovative technical undertakings.

  • Experience performing security design/architecture reviews, code reviews, and penetration tests of large applications, systems and/or networks

  • Experience overseeing remediation of vulnerabilities

  • Experience defining security requirements

  • Proven track record of working with infrastructure and development teams to build secure solutions

  • Knowledge of Windows or UNIX internals, especially those relevant to authentication and access control and other facets of security

  • Proficiency in reading, writing, and auditing C and/or C++

  • Proficiency in at least one scripting language (Bash, Perl, Python, Powershell, etc.) - Knowledge of common web application and mobile frameworks

  • Familiarity with common vulnerabilities and attack vectors

  • Knowledge of ubiquitous encryption technologies (PGP, SSH, SSL, etc.) and common protocols (RADIUS, LDAP, KERBEROS, SAML, etc.)

  • Solid understanding of secure network design

     

    Required Non-Technical Skills:

  • Experience leading audits (PCI, SOX, ISO, etc.)

  • Excellent analytical and problem solving skills

  • Strong written communication skills

  • Fast learner and interested in keeping current with research in the industry

  • Work well in a small team, collaborative environment

  • Ability to communicate complicated technical issues and the risks they pose to programmers, network engineers, system administrators and management

  • Help programmers/administrators to develop fixes for issues discovered

Preferred Qualifications:

  • Knowledge of best practices and standards for enterprise security architecture across one or more of the following areas: service-oriented architecture (SOA), enterprise service bus (ESB), business process management, customer relationship management, enterprise resource management,
  • 7+ years of experience in an information security and risk management role supporting security programs, security architecture, or software and system development projects in complex enterprise environments
  • Experience as a consultant at a highly technical information security consultancy
  • Experience working as a technical security architect or related security role in a company where there is a commitment to information security and technology; this can include but is not limited to financial services, hedge funds, media & entertainment.
 

Ideally, we would love to have someone in the Sacramento, CA area, however, we are willing to consider a remote expert for this long-term contract position.

Blackmere Consulting is an equal opportunity employer (EOE/AA/M/F/Vets/Disabled/Protected Statuses)

Option 1: Create a New Profile

Apply with LinkedIn