Previous Job
Previous
Security Architect with AWS, Azure exp
Ref No.: 17-07712
Location: Washington, District of Columbia
Position Type:Direct Placement
 Job Title: Security Architect with AWS, Azure exp
Location: Washington, DC
Job Type: Full Time
 
Applicant should have experience with AWS, Azure and O365 workloads
 
Required Skills/Abilities:
• Extensive knowledge of IT, enterprise architecture, software development life cycle, and information security platforms and applications
• Ability to work well under pressure and meet tight deadlines
• High level of motivation, confidence, integrity, and responsibility
• Knowledge of best practices and standards for enterprise security architecture, specifically in the field of Identity & Access Management, Enterprise Content Management, Collaboration Tools, Service-Oriented Architecture, Cloud, Mobility, Data Analytics, and Web 2.0 related services
• Practical knowledge of common Web vulnerabilities as per SANS 25 or OWASP Top 10 specifications
• Excellent interpersonal skills including the ability to work independently and effectively in a team/task force as a team member or leader, and with senior staff and managers in the unit and elsewhere in the WBG
• Ability to collaborate with senior management stakeholders to identify requirements and drive compliance with approved standards
 
Educational Qualifications and Experience:
• Education: Bachelor's degree in Computer Science, Information Systems, or a related technical field
• Role Specific Experience: 2+ years of experience
• Experience in providing guidance for data protection based on data sensitivity and associated business risk
• Experience with enterprise security architecture design and implementation for a financial services organization or other organizations with similar information security needs and requirements
• Experience guiding project team remediating such vulnerabilities
 
Certification Requirements:
• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Global Information Assurance Certification (GIAC), and Information Systems Security Management Professional (ISSMP)
                                    
Essential Job Functions:
• Work with project teams to define security requirements for new systems in line with the enterprise information security architecture
• Provide security design recommendations based on enterprise information security architecture and solution patterns
• Provide guidance and assist in the development of security standards for IT platforms in line with the information security architecture
• Maintain an up-to-date understanding of emerging trends in information security architecture and apply new techniques and trends (in-line with overall information security objectives and risk tolerance ) to the  information security architecture
• Perform controls reviews and system assessments to develop risk profiles for IT systems and evaluate the efficiency and effectiveness of the IT control environment
• Maintain impartiality around IT systems to produce unbiased reports on information security risk
• Provide business units with recommendations to reduce information security risk within their areas
• Identify efficiencies to improve the performance and responsiveness of the ITSSR information security architecture function
• Prepare and present security design and architectural review reports to system owners, business units, and other
• Evaluate current software security posture and propose mitigation and remediation plans to meet software security assurance requirements
• Translate technical security deficiencies into business risks that are understandable by business stakeholders in order to get buy-in for security investments