We are committed to providing our Employees with a dynamic and collaborative work environment; there is equal opportunity for learning and personal growth.
Creativity and innovation are encouraged. Above all, our mission-oriented employees will be treated with the same attention, respect, values and care that we provide to our clients and members.
We’re seeking a Senior Security Architect to join our International IT team!
Additional Details About The Role
Collaborate with Security and Engineering teams to incorporate strong security controls, apply security best practices in the development life cycle, and mitigate security vulnerabilities.
Research, design, develop, and deploy new mitigations and defenses in collaboration with other teams.
Develop and drive the implementation of a security architecture that supports Engineering’s goals and deliverables through, strategy, design, requirements, and code.
Identify vulnerabilities and architectural weaknesses in the design and implementation of systems software and services.
Monitor the threat landscape and analyze emerging threats to understand the risk that they pose to customers.
Define and champion process improvements that help engineers create safer software and services.
Engage with and contribute knowledge back to the Information Security team.
To Succeed In This Role You Will Need
Solid working knowledge of Windows and / or Linux OS, IPS / IDS, firewalls, vulnerability scanners, network hardware,
Practical understanding of modern web application architecture to support application scanning efforts and managing WAF
Support and participate in SOC engineering efforts such as tool integration, development of automation, scripts, testing of new tools and evaluation of new technologies.
Oversee and assist in the deployment of security-related tools like Endpoint Security, security monitoring, web proxy,
Experience with Fortigate firewalls or an equivalent next gen firewall
Should have experience in Email and Web security solutions (Mimecast, web proxies)
Should have logging / security monitoring / SIEM experience (Splunk, SumoLogic experience a plus)
Familiarity with popular security frameworks or standards, such as ISO, NIST