Randstad Information Security Architect in New York, New York

Information Security Architect

job details:

  • location:New York, NY

  • date posted:Friday, November 9, 2018

  • job type:Permanent

  • industry:Professional, Scientific, and Technical Services

  • reference:655918

job description

Information Security Architect

job summary:

This is a Technical Leadership position in the area of Information Security.

Responsibilities include:

Designing and overseeing development and implementation of the security architecture as well as managing the Company's security (Checkpoint) gateways. Position requires identifying researching and deploying technical security solutions to protect Company's assets and mission critical systems.The detailed responsibilities of the position include:

  • Establish and maintain a methodology to define security requirements for business projects. The methodology includes both general and technical requirements and subsequently recommending documented security architecture designs for project execution;

  • Applies Mutual of America security policy, principles, procedures, guidelines and requirements to security architectural designs;

  • Propose and periodically review deployed security infrastructure to ensure technology is current and supportive to the Vulnerability Management and Threat and Incident Response Management processes as cost effective solutions, and ensure infrastructure documentation is complete and comprehensive;

  • Manage security gateways (i.e., VPN, Checkpoint-firewalls) making necessary changes and troubleshoot any related issues;

  • Respond to audit inquiries and ensure that security architecture complies with the Company's Information Security Policy and regulatory controls the Company must comply with;

  • Establish metrics to demonstrate the effectiveness of security architecture;

  • Conduct thorough security risk assessments and document such assessment in a complete comprehensive report that includes technical and non-technical explanations of findings along with remediation requirements;

  • Participate in yearly budget planning;

  • Manage and monitor security vendors participating in activities that support the Information Security organization. This role also must also work with the Corporate Law Division to assess security provisions contained in vendor contracts;

  • Work closely with junior Information Security staff members to ensure they adhere to all aspects of the Company's security practices; and

  • Attend project meetings and consult with business areas on technical security issues.

Experience/Skills:

Five plus years security architecture experience with concentration in data security and data access management, data base technologies, and operating systems in distributed and centralized application-processing environments.

Technical Skills:

The position requires a strong knowledge base in the following areas:

  • Security technologies, architectures and products as well as wireless technologies and strong knowledge of Checkpoint or similar firewall secure gateway technologies including VPN;

  • Authorization and authentication strength;

  • Applicable regulatory security requirements, cloud architecture, industry security best practices, NIST & ISO frameworks;

  • Network protocols and various topologies;

  • Computer operating systems; and

  • Knowledge of cryptography - cryptographic solutions that secure transactions and a general understanding of computer forensics.

Functional Skills:

The information security professional in this position requires skills in the following areas:

  • Communications - possess the ability to communicate effectively, both written and orally, to various levels of management all security related topics both in technical and laymen terms;

  • Analytic Thinking - ability to dissect a problem into its component parts and understand the implications inherent in the component problem;

  • Leadership Competencies - ability to display leadership skills particularly when security events are encountered;

  • Individual and Team Effectiveness - accountability for the success of the role and fosters team work when developing security solutions;

  • Business Partner Focus - understand the business processes/drivers and information security needs as related to the business and strives to be a business enabler;

  • Results Oriented - organizes and manages ideas from diverse sources and processes ideas in a positive way that ensures an environment of goals, measured milestones and results;

  • Accountability - able to accept accountability and ownership for security architecture as well as subscribe to a best practice strategy and design philosophy;

  • Trust/Organizational Commitment - display a clear organizational commitment and be able to understand the importance of supporting confidentiality, integrity and availability. In addition, work in the best interest of the Company and be mature and trustworthy;

  • Time Management/Planning - manage time and plan meetings to ensure others' time are respected; and

  • Impact and Influence - possess the skills to persuade, convince or influence others to get them to buy in to a security solution, process, approach or idea etc. through education and communication.

  • Master's degree or Bachelor's degree in computer science/software engineering or 12-year work experience; either a professional security certification or similar technical security technical certification required.

location: New York, New York

job type: Permanent

work hours: 8 to 5

education: Bachelors

responsibilities:

Responsibilities include:

Designing and overseeing development and implementation of the security architecture as well as managing the Company's security (Checkpoint) gateways. Position requires identifying researching and deploying technical security solutions to protect Company's assets and mission critical systems.The detailed responsibilities of the position include:

  • Establish and maintain a methodology to define security requirements for business projects. The methodology includes both general and technical requirements and subsequently recommending documented security architecture designs for project execution;

  • Applies Mutual of America security policy, principles, procedures, guidelines and requirements to security architectural designs;

  • Propose and periodically review deployed security infrastructure to ensure technology is current and supportive to the Vulnerability Management and Threat and Incident Response Management processes as cost effective solutions, and ensure infrastructure documentation is complete and comprehensive;

  • Manage security gateways (i.e., VPN, Checkpoint-firewalls) making necessary changes and troubleshoot any related issues;

  • Respond to audit inquiries and ensure that security architecture complies with the Company's Information Security Policy and regulatory controls the Company must comply with;

  • Establish metrics to demonstrate the effectiveness of security architecture;

  • Conduct thorough security risk assessments and document such assessment in a complete comprehensive report that includes technical and non-technical explanations of findings along with remediation requirements;

  • Participate in yearly budget planning;

  • Manage and monitor security vendors participating in activities that support the Information Security organization. This role also must also work with the Corporate Law Division to assess security provisions contained in vendor contracts;

  • Work closely with junior Information Security staff members to ensure they adhere to all aspects of the Company's security practices; and

  • Attend project meetings and consult with business areas on technical security issues.

qualifications:

Experience/Skills:

Five plus years security architecture experience with concentration in data security and data access management, data base technologies, and operating systems in distributed and centralized application-processing environments.

Technical Skills:

The position requires a strong knowledge base in the following areas:

  • Security technologies, architectures and products as well as wireless technologies and strong knowledge of Checkpoint or similar firewall secure gateway technologies including VPN;

  • Authorization and authentication strength;

  • Applicable regulatory security requirements, cloud architecture, industry security best practices, NIST & ISO frameworks;

  • Network protocols and various topologies;

  • Computer operating systems; and

  • Knowledge of cryptography - cryptographic solutions that secure transactions and a general understanding of computer forensics.

Functional Skills:

The information security professional in this position requires skills in the following areas:

  • Communications - possess the ability to communicate effectively, both written and orally, to various levels of management all security related topics both in technical and laymen terms;

  • Analytic Thinking - ability to dissect a problem into its component parts and understand the implications inherent in the component problem;

  • Leadership Competencies - ability to display leadership skills particularly when security events are encountered;

  • Individual and Team Effectiveness - accountability for the success of the role and fosters team work when developing security solutions;

  • Business Partner Focus - understand the business processes/drivers and information security needs as related to the business and strives to be a business enabler;

  • Results Oriented - organizes and manages ideas from diverse sources and processes ideas in a positive way that ensures an environment of goals, measured milestones and results;

  • Accountability - able to accept accountability and ownership for security architecture as well as subscribe to a best practice strategy and design philosophy;

  • Trust/Organizational Commitment - display a clear organizational commitment and be able to understand the importance of supporting confidentiality, integrity and availability. In addition, work in the best interest of the Company and be mature and trustworthy;

  • Time Management/Planning - manage time and plan meetings to ensure others' time are respected; and

  • Impact and Influence - possess the skills to persuade, convince or influence others to get them to buy in to a security solution, process, approach or idea etc. through education and communication.

  • Master's degree or Bachelor's degree in computer science/software engineering or 12-year work experience; either a professional security certification or similar technical security technical certification required.

skills: Experience/Skills:

Five plus years security architecture experience with concentration in data security and data access management, data base technologies, and operating systems in distributed and centralized application-processing environments.

Technical Skills:

The position requires a strong knowledge base in the following areas:

  • Security technologies, architectures and products as well as wireless technologies and strong knowledge of Checkpoint or similar firewall secure gateway technologies including VPN;

  • Authorization and authentication strength;

  • Applicable regulatory security requirements, cloud architecture, industry security best practices, NIST & ISO frameworks;

  • Network protocols and various topologies;

  • Computer operating systems; and

  • Knowledge of cryptography - cryptographic solutions that secure transactions and a general understanding of computer forensics.

Functional Skills:

The information security professional in this position requires skills in the following areas:

  • Communications - possess the ability to communicate effectively, both written and orally, to various levels of management all security related topics both in technical and laymen terms;

  • Analytic Thinking - ability to dissect a problem into its component parts and understand the implications inherent in the component problem;

  • Leadership Competencies - ability to display leadership skills particularly when security events are encountered;

  • Individual and Team Effectiveness - accountability for the success of the role and fosters team work when developing security solutions;

  • Business Partner Focus - understand the business processes/drivers and information security needs as related to the business and strives to be a business enabler;

  • Results Oriented - organizes and manages ideas from diverse sources and processes ideas in a positive way that ensures an environment of goals, measured milestones and results;

  • Accountability - able to accept accountability and ownership for security architecture as well as subscribe to a best practice strategy and design philosophy;

  • Trust/Organizational Commitment - display a clear organizational commitment and be able to understand the importance of supporting confidentiality, integrity and availability. In addition, work in the best interest of the Company and be mature and trustworthy;

  • Time Management/Planning - manage time and plan meetings to ensure others' time are respected; and

  • Impact and Influence - possess the skills to persuade, convince or influence others to get them to buy in to a security solution, process, approach or idea etc. through education and communication.

  • Master's degree or Bachelor's degree in computer science/software engineering or 12-year work experience; either a professional security certification or similar technical security technical certification required.

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.