Previous Job
Cloud Security Architect
Ref No.: 17-14905
Location: Jacksonville, Florida
Position Type:Direct Placement
Start Date: 09/18/2017
Pay Rate : $ 150,000.00 - 175,000.00 /Year
Alluvion Staffing is seeking a Cloud Security Architect for a direct hire position for an enterprise client located in Jacksonville, Florida.

Job Summary
  • Design and implement secure and reliable cloud, hybrid cloud, and managed hosting solutions in a globally-distributed and federated enterprise for client applications across all hosting models including: Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS).
  • The position will be responsible for implementing, and operationalzing enterprise security architecture for client’s information assets, services, and the products that depend on them by aligning to existing security policy and standards. 
  • The position will build trust with customers and stakeholders, while focused on protecting the privacy of client’s customers and employees. 
 Job Responsibilities
  • Collaborate with Infrastructure Services, Application Development, and Information Security teams to design and implement secure and reliable cloud, hybrid cloud, and managed hosting solutions. 
  • Complete architecture assessments across projects; evaluate use of security solutions to support these projects.
  • Work with development and infrastructure teams to create technology roadmaps that bridge the gap between current state and cloud computing.
  • Design and develop security architectures for cloud and cloud/hybrid based systems.
  • Possess a firm understanding of the offerings from major cloud providers including Microsoft and IBM.  Based on business requirements, design and implement cloud-native architectures and designs that will allow those requirements to be met with a minimal degree of risk to client and with appropriate security controls present
  • Develop standards in partnership with Infrastructure Services, and Application Development.
  • Identify, recommend, coordinate, and/or conduct informal/formal training sessions to deliver timely knowledge to support teams regarding technologies, processes or tools
  • Develop and execute strategies to increase cloud security knowledge throughout Corporate IT.
  • Provide expertise and direction relative to processes, projects, issues and initiatives regarding cloud security implementation
  • Help manage the acquisition and procurement of technologies best designed to meet client’s enterprise security requirements
  • Review and advise on security policy, operational design and architectural documentation.
 Job Qualifications
  • Minimum of 8 years of experience in information security or a mixture of related technical fields
  • Prefer minimum of 5 years of experience with cloud platforms
  • Experience architecting security solutions within IBM, Microsoft, and, preferably, other cloud providers
  • Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development (Application Security), data protection, cryptography, key management, identity and access management (IAM), network security) within IaaS, PaaS, SaaS, and other cloud environments
  • Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (Oauth, Auth0, OpenID, etc.)
  • Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies
  • Experience with deployment orchestration, automation, and security configuration management
  • Experience developing and refining threat-informed defense-in-depth security architectures
  • Familiarity with audit and security frameworks, such as SOC2, COBIT, NIST, CIS Controls.
  • Knowledge of security, backup, recovery and disaster recovery services in cloud, hybrid cloud and managed hosting environments.
  • Advanced knowledge of prevalent offensive cyber security tactics and techniques (vulnerability exploits and counter-measures, remote access Trojans and related persistence techniques, social engineering, etc.)
  • Advanced knowledge of Advanced Persistent Threat (APT) tactics and methodologies
  • Advanced knowledge of prevalent operational security tactics and techniques (incident response and recovery from breaches, vulnerability exploits and countermeasures, remote access Trojans and related persistence techniques, social engineering, etc.)
  • Adequate knowledge of web related technologies (Web applications, Web Services, Service Oriented Architectures, Micro-services, Containerization of services) and of network/web related protocols. (JavaScript, MVC frameworks, REST, JSON, Node.js, etc.)
  • Exceptional communication and advocacy skills, both verbal and written, with the ability to express complex and technical issues in clear and concise language
  • Ability to collaborate and communicate effectively and tactfully with both business-oriented executives and technology-oriented personnel
  • Ability to negotiate compromise between diverse parties with competing equities
 This role is not available for remote work at this time. Cannot use Third parties.