Job Summary:
As an Infrastructure Security Architect, you will be at the forefront of designing and enforcing security architectures that protect our IT infrastructure. You will assess and enhance our security measures to safeguard against unauthorized access, data breaches, and other threats. The ideal candidate will possess deep expertise in security best practices, network architecture, and cutting-edge security technologies.
Key Responsibilities:
- Architect Security Solutions: Design and implement robust security architectures for both on-premises and cloud-based infrastructure, ensuring comprehensive protection against threats.
- Assess and Mitigate Risks: Conduct thorough security assessments and audits to identify vulnerabilities. Develop and deploy strategies to address these risks effectively.
- Develop Security Policies: Create and enforce security policies, standards, and procedures to align with industry regulations and best practices.
- Collaborate on Security Integration: Work with IT teams to embed security controls into new systems and applications from the ground up.
- Select Security Technologies: Evaluate and recommend security tools and solutions that enhance the organization's defense mechanisms.
- Monitor and Respond: Oversee security events and incidents, providing recommendations for response and recovery while ensuring continuous improvement in our security posture.
- Manage Network Security: Implement and manage key network security measures such as firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs, and endpoint protection.
- Disaster Recovery Planning: Develop and maintain effective disaster recovery and business continuity plans to ensure organizational resilience.
- Provide Guidance and Training: Offer guidance and training to IT staff on security best practices and emerging threats.
- Stay Informed: Keep abreast of the latest security trends, vulnerabilities, and technologies to keep our security strategies up-to-date.
- Ensure Compliance: Collaborate with compliance teams to ensure our practices meet regulatory requirements such as GDPR, HIPAA, and others.
- Lead Incident Response: Lead the response to security incidents and conduct post-incident analyses to identify root causes and improve prevention measures.
Qualifications:
- Educational Background: Bachelors degree in Computer Science, Information Security, or a related field.
- Experience: 7+ years in IT security with a focus on infrastructure security architecture.
- Technical Expertise: Strong knowledge of network security, encryption, authentication, and access controls.
- Cloud Security: Experience with cloud security in environments such as AWS, Azure, or Google Cloud.
- Security Tools: Proficiency in using security tools like firewalls, IDS/IPS, SIEM, VPNs, and endpoint protection.
- Frameworks and Standards: Familiarity with security frameworks and standards such as NIST, ISO 27001, and CIS Controls.
- Analytical Skills: Excellent problem-solving skills with the ability to develop effective solutions to complex security challenges.
- Communication Skills: Strong verbal and written communication skills, with the ability to collaborate with both technical and non-technical teams.
- Certifications: Relevant certifications (e.g., CISSP, CISM, CEH, CCSP) are highly desirable.