Cybersecurity Architects

2 weeks ago

Ohio Township, United States Chelsoft Solutions Co Full time
Job DescriptionJob Description
  • Cybersecurity Architect Duration: ~3 months; Minimum Experience: 5 years as Cybersecurity Architect or similar experience in a software security role
    • Experience working on infrastructure projects across cloud, compute, network, and/or storage towers
    • Hands-on experience working in Cloud (AWS and/or Azure) and with related infrastructure.
    • Experience with software development practices, techniques, and tools.
    • Knowledge of and experience with various operating systems, platforms, technologies, programming languages, security tools, etc.
    • Ability to document work products, processes, procedures, and architecture diagrams effectively, especially against a formalized framework of controls.
    • Experience with security best practices and deep understanding of cloud risks and risk management and assessment of cloud resources and events.
    • Experience using at least one programming scripting language (e.g., Python) for automations, serverless code, and API consumption.
    • High level familiarity and/or experience in developing of CI/CD pipelines and using common CI/CD tools and technologies native to cloud or other industry standards.
    • Experience in using source control systems and hosting tools like Git and GitHub.
    • Familiarity with audit practices and ability to guide teams in generating audit ready evidence for security control implementation in applications and infrastructure.
Resource Qualifications
Basic Qualifications:
  • Communication Skills
    • Ability to work independently and communicate the technical and security-related issues to client / business stakeholders.
    • Ability to communicate in an organized and knowledgeable manner in both written and verbal formats. This includes delivering clear requests for information to users and communicating technical information to non-technical audiences.
    • Ability to communicate consistently and drive objectives, relying on fact-based decisions about risk that improve the trade-off between risk mitigation and business performance.
    • Good presentation, project management, facilitation, and delivery skills.
    • Ability to create documentation of work and present to management.
  • Cloud / Security Skills
    • Understand cloud services and concepts, such as AWS GuardDuty, Azure Policies, AWS Config, PaaS Database, AWS Lambda, and IAM services.
    • Understand cloud networking concepts and architecture and services, such as AWS Firewall, Network Security Groups (NSG), and Internet Gateways.
    • Ability to troubleshoot and develop solutions to complex issues, which may include, but are not limited to, Cloud architecture, security alerts, log monitoring, and cloud and serverless infrastructure.
    • Deep understanding of cloud security technologies and cloud-based solutions.
    • Deep understanding of cloud risks and risk management and assessments.
  • IT Processes Skills
    • Understand change and configuration management processes and ability to strictly adhere to them.
    • Understand exception management process for cloud controls and guardrails.
    • Deep understanding of asset management, specifically cloud assets/resources.
  • Strong Critical Thinking Skills
    • Ability to identify and analyze current processes including bottlenecks, concerns, etc. and then act upon them and effectively justify those actions.
    • Ability to identify future roadblocks and promote data-based problem solving.
    • Ability to assess and prioritize problems in relation to organizational goals.
    • Ability to effectively apply analytical and problem-solving capabilities.
  • Additional Skills
    • Strong understanding of privacy, security, and other regulations that are applicable to GEA.
    • Understand security controls framework like NIST, CIS, and ISO.
    • Ability to remain flexible in a demanding work environment and adapt to rapidly changing priorities.
    • Strong time management, prioritization, and attention to detail.
    • Possess and exhibit a high level of integrity and ethics.
    • Ability to articulate technical details through well-documented artifacts.
Desired Qualifications:
  • Certifications in the following or similar are considered nice to have:
    • AWS Solution Architect, Developer, or DevOps Certifications
    • Azure Architect or Administrator Certifications
    • CISSP, Security+, or similar
  • Knowledge of existing technologies that will be impacted by this initiative:
    • AWS and Azure
    • Network, Storage, Application, Compute Infrastructure
    • Compliance frameworks such as NIST 800-171, CMMC, SOX, etc.
    • Integrations / Automations
    • CSPM tools (e.g., Prisma, Wiz)