Previous Job
Information Security Architect
Ref No.: 18-16837
Location: San Jose, California
Typically requires a Masters degree (MA/MS) (BS/BA with additional experience will be considered) , and at least five to ten years of increasing responsibility for positioning and delivering Cloud Solutions including server consolidation, storage consolidation, disaster recovery, backups, networking, all with a focus on security. Strong internal consulting skills are a requirement for this position as this position will work with internal customers in driving their architecture needs and will routinely deliver presentations to stakeholders. Knowledge and experience on holistic data center virtualization (spanning compute, storage, security and networking services like server load balancing etc) is highly desirable. SP-style cloud infrastructure architecture experience is a key differentiator.
Technical Expertise:
Network/Infrastructure Security technologies (Firewall, access control, intrusion detection, intrusion prevention, administrative access control).
Data governance solutions for data in development, test, staging and production environments. Demonstrated experience with Secure SDLC.
Strong Knowledge of information security standards (e.g., ISO 17799/27002, etc.), rules and regulations related to information security and data protection.
Technical knowledge of access control mechanisms, federated authentication schemes, encryption, digital certificates and trust-based authentication
Cloud Security Alliance best practices and guidelines
Cloud Security Concepts (SaaS, PaaS, IaaS), Mobile Architecture, Network and Application Security and/or Data protection
Proven experience implementing and leading information risk management programs with regard to legislation, regulation and guidance including SOX, HIPAA, GLB, PCI.
Identity and access management solutions.
Industry-specific certifications, including one or more of the following: CCIE (Security), CISSP, CISA, CISM, GCIH, ISSAP, ISSMP, CCSP, or GCFA.
Networking infrastructure, multi-platform including virtual
Networked protocols, including Ethernet and its enhancements for the Data Center, IP, FCoE, TCP, UDP; and basics of higher layer protocols: SSL/TLS, HTTP, real-time traffic (voice/video), NFS, database access protocols
Network addressing: IPv4, IPv6, IP addressing best practices, DNS, DHCP
Network protocols and concepts, including Ethernet, VLANs, Rapid Spanning Tree, EIGRP, BGP, route summarization/filtering, NAT, QoS
System interaction with Data Center compute technologies, including Cisco UCS (x86), VMWare virtualization, hypervisor (Openstack/KVM), OS (Linux/Windows), workload mobility
Relevant experience in large-scale data center architecture/design, middleware architecture, application deployment methods, automation, testing, compliance, and auditing
Service-oriented architecture for cloud-based services, including the transformational elements (Infrastructure-as-a-service), management and automation (self-service, on-demand), multi-tenancy
Strong understanding of Servers and Applications is required, including application development/deployment methodologies
ITIL Certification / Training is strongly preferred
Non-Technical Requirements:
Track record of thought-leadership in the area of information risk management such as participation in industry forums, publication and contribution to legislative and regulatory process of value.
Proven ability to communicate threat and risk profiles to executives and individual contributors and facilitate progress towards required improvements
Full commitment to customer satisfaction and the highest ethical standards
Core expertise to include design concepts, architectural mindset, IT analysis/analytical thinking, innovation management, enterprise perspective and process knowledge.
Analyzes opportunities with a broad, strategic view; integrates business and technology requirements to achieve cross-domain solutions that work across the enterprise; applies methodologies that are appropriate for multiple users / technology platforms.
Identifies, invents, incorporates, and advances innovations in Cisco products, services, solutions, technology, and processes.
Client-facing skills to include cross-functional influence, external and internal consulting/partnering.
Excellent understanding of the industry landscape (competitors and partners).
High-level, out-of-the-box thinking, analytical reasoning, and creative problem solving skills.
Ability to shift from high-level thinking to realistic and pragmatic execution is essential.
Successful track record in large-scale IT technology change and adoption is highly desirable, especially in the application space.
Solid understanding of the end-to-end IT process, including architecture, design & engineering, implementation, and operations; prior architecture, design and operational responsibilities are highly desirable.
Excellent written and verbal communications skills:
Ability to communicate technology strategy and architecture approach to engineers, executives, and Cisco customers.
Strong influencing and leadership skills at technical level.
Negotiation and conflict-resolution skills.
Willingness and ability to work with teams, ability to build relationships using an open and respectful communication and collaboration style.
Technology leadership skills to include coaching/mentoring/teaching, critical thinking/judgment, facilitation, leading change, and team development.
Foundational / IT best practice skills to include investment management and functional innovation.
Communication skills to include conflict management, negotiation, presentation/demonstration, and written communication.
Cisco best-practice skills to include building relationships, cultural sensitivity, goal alignment, learning agility, and virtual/remote training.