Senior Cloud Security Architect

Job Description

The Senior Security Architect is responsible for determining security requirements, planning, implementing, and testing security systems, preparing security standards, policies, and procedures, and mentoring team members. He/she also designs, builds, tests, and implements security systems across Net App’s networks, infrastructure, and cloud-based architecture, staying up to date with the latest security standards, systems, and authentication protocols.

• Interpret compliance and security requirements to design implementable and repeatable controls
• Identify gaps in existing and proposed architectures and security controls and provide recommendations for resolution
• Contribute to creation and maintenance of Enterprise Information Security policies, standards, and process documentation
• Coordinate with Enterprise Information Security leadership to create and maintain overall short‑ and long‑term roadmaps
• Conduct reviews for projects related to infrastructure and general information security to ensure they meet requirements and target‑state architectures
• Participate in risk assessment activities as subject matter expert for infrastructure and general information security concerns
• Determine security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates
• Plan security systems by evaluating network and security technologies; developing requirements for LANs, WANs, VPNs, routers, firewalls, and related security and network devices; design PKIs, including use of certification authorities and digital signatures as well as hardware and software; adhering to industry standards
• Implement security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation
• Verify security systems by developing and implementing test scripts
• Maintain security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs
• Upgrade security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements
• Prepare system security reports by collecting, analyzing, and summarizing data and trends
• Update job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations
• Enhance department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments

• Experience developing enterprise class security architectures in both traditional data center and public / private cloud environments
• Working knowledge of industry best practices for information security
• 2+ years working with one or more cloud service models (IaaS, PaaS, SaaS) and deployment models (public, private, hybrid)
• 2+ years direct experience designing and implementing security solutions for one or more leading cloud providers (AWS, Azure, Google Cloud Platform)
• 2+ years direct experience with leading firewall, VPN, IDS/IPS, endpoint security, and DLP solutions
• Working knowledge of Dev Ops Security concepts for Continuous Integration/Continuous Delivery environments
• Working knowledge of risk assessments, configuration management, change control, and security baselines and frameworks (NIST CSF, NIST SP 800‑171, CIS)
• Vulnerability management experience with CVSS, CVE, and OWASP
• Expert knowledge of federated identity management, role and access management, and privileged administrative access best practices
• Ability to communicate verbally and in writing with audience appropriate content
• Desired: a minimum of 12 years of related experience with a Bachelor’s degree; or 8 years and a Master’s degree; or a PhD with 5 years experience; or equivalent experience. Certifications such as CISSP, CCSP, CISM, CCIE Security, and AWS Certified Solutions Architect are a plus

All your information will be kept confidential according to EEO guidelines.