Senior Cloud Security Architect

NetApp is the data authority for hybrid cloud. We provide a full range of hybrid cloud data services that simplify management of applications and data across cloud and on-premises environments to accelerate digital transformation. Together with our partners, we empower global organizations to unleash the full potential of their data to expand customer touchpoints, foster greater innovation and optimize their operations.

NetApp Data Fabric simplifies and integrates data management across cloud and on-premises to accelerate digital transformation. It delivers consistent and integrated data management services and applications for data visibility and insights, data access and control, and data protection and security. And unleashes the power of data to achieve a new competitive advantage.

If you ask anyone at NetApp why they work here, the answer is inevitably the same: it's the people. At NetApp, we place trust, integrity, teamwork, and caring at the heart of what we do. As such, we've created a culture where people feel empowered to make a difference; where we're passionate about innovation and collaboration; and where we take care of each other, our customers, our partners, and our communities simply because it's the right thing to do.

We provide comprehensive medical, dental, wellness and vision plans for you and your family. We also offer financial savings programs to help you plan for your future. We work hard but also recognize the importance of work-life balance for our employees. We offer educational assistance, legal services, access to discounts and fitness centers.  Our volunteer time off program is best in class because what's important to our employees is important to us  Join us, and we'll help you do your best work.

Interested in working at NetApp? Search our open jobs -

Are you data-driven?  We at NetApp believe in the transformative power of data – to expand customer touchpoints, to foster greater innovation, and to optimize operations.  We are designed for simplicity, optimized to protect, created to embrace future opportunity, and open to enrich choice.  We are the data authority for hybrid cloud, and we are helping our customers realize the full potential of their data.

We've built a Data Fabric for a data-driven world – to simplify and integrate data management across the resources that are best for the business.  With the Data Fabric, our customers can harness the power of cloud data services, build cloud infrastructures, and modernize storage through data management.

By harnessing the power of hybrid cloud data services, customers gain the freedom of choice to securely manage and move data – anywhere, on any cloud. Only NetApp can help organizations deliver data-rich customer experiences when they rapidly test and deploy new applications that easily use data and services regardless of where they reside or in what form.

The Senior Security Architect is responsible for determining security requirements; planning, implementing, and testing security systems; preparing security standards, policies, and procedures; and mentoring team members. He/she also is responsible for designing, building, testing and implementing security systems across NetApp's networks, infrastructure, and cloud based architecture. The Senior Security Architect is expected to have a thorough understanding of complex IT systems and stay up to date with the latest security standards, systems and authentication protocols, as well as best practice security products.

Job Requirements

Interpret compliance and security requirements to design implementable and repeatable controls
Identify gaps in existing and proposed architectures and security controls and provide recommendations for resolution
Contribute to creation and maintenance of Enterprise Information Security policies, standards, and process documentation
Coordinate with Enterprise Information Security leadership to create and maintain overall short- and long-term roadmaps
Conduct reviews for projects related to infrastructure and general information security to ensure they meet requirements and target-state architectures
Participate in risk assessment activities as subject matter expert for infrastructure and general information security concerns
Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates
Plans security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards
Implements security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation
Verifies security systems by developing and implementing test scripts
Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs
Upgrades security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements
Prepares system security reports by collecting, analyzing, and summarizing data and trends
Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations
Enhances department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments
 

Skills and Education

Skills:

Experience developing enterprise class security architectures in both traditional data center and public / private cloud environments
Working knowledge of industry best practices for information security
2+ years working with one or more cloud service models (Infrastructure as a Service, Platform as a Service, and Software as a Service) and deployment models (public, private, hybrid)
2+ years direct experience designing and implementing security solutions for one or more leading cloud providers (AWS, Azure, Google Cloud Platform)
2+ years direct experience with leading firewall, VPN, IDS/IPS, endpoint security, and DLP solutions
Working knowledge of DevOps Security concepts for Continuous Integration/Continuous Delivery environments
Working knowledge of risk assessments, configuration management, change control, and security baselines and frameworks (NIST CSF, NIST SP , CIS)
Vulnerability management experience with Common Vulnerability Scoring System (CVSS), Common Vulnerabilities and Exposures (CVE), and Open Web Application Secure Project (OWASP)
Expert knowledge of federated identity management, role and access management, and privileged administrative access best practices
Ability to communicate verbally and in writing with audience appropriate content
Education:

Desired: a minimum of 12 years of related experience with a Bachelor's degree; or 8 years and a Master's degree; or a PhD with 5 years experience; or equivalent experience.  Certifications such as CISSP, CCSP, CISM, CCIE Security, and AWS Certified Solutions Architect are a plus
 

So get ready to tap into the data visionary within, and join us as we accelerate digital transformation and empower our customers to change the world with data

If you ask a NetApp employee why they work here, the answer is inevitably the same: the people. At NetApp, our culture is at the heart of what we do. We place importance in trust, integrity, teamwork, and caring above all else. NetApp is a place where people are empowered to make a difference. Empowered to innovate. Empowered to collaborate. Empowered to help ourselves and others be data-driven and change the world. We take care of each other, our customers, our partners, and our communities simply because it's the right thing to do.

We work hard but also recognize the importance of work-life balance for our employees because what's important to them is important to us  Recently we implemented Family First, which encourages employees to take paid time off to bond with a new child (through birth or adoption) or to care for a family member with a serious health condition.  Our volunteer time off program is best in class, offering employees 40 hours of paid time off per year to donate their time with their favorite organizations.  We provide comprehensive medical, dental, wellness and vision plans for you and your family.  We offer educational assistance, legal services, and access to discounts and fitness centers. We also offer financial savings programs to help you plan for your future.  

Join us and see what empowerment can do.

All your information will be kept confidential according to EEO guidelines.