Sr. Security Architect
Auto req ID6570BR
Posting titleSr. Security architect
Position profileDescription: CN seeks a Sr. Security Architect to join the Technology and Security Architecture team under the lead of the Sr. Security Domain Architect. The duties and responsibilities of this role are both strategic and tactical: Strategically, the role is taking part in defining CN's Information Security needs – based on the direction set by the business and the Information Security Governance group – before being translated into a Security Architecture vision, a Security Strategy (Master Plan) and according roadmaps. Tactically, the role provides governance for new projects which includes helping the Solution Architects identify where to focus, which questions needs to be answered and what's to be done. He is involved in reviewing and approving project technical deliverables to ensure they are architecturally sound, complies with CN's Standards and in alignment with the strategic directions. He is also responsible of evolving the security aptitudes of other groups by rationalizing the security challenges to be addressed, the requirements and the proper solutions to use. This includes but is not limited to evolving the toolset and the security knowledge of the Solution Architects, Domain Architects and the Operation groups. Requirements:
Excellent written and oral communications skills.
Ability to translate business level requirements into technical concepts.
Strong ability to abstract and explain Security Architecture in terms of trust, domains, interfaces, capabilities and patterns.
Very good knowledge of security best practices: Frameworks, Processes, Governance and Enterprise Security Architecture.
Experience in performing Information Security Risk Assessments.
The role requires soft skills to influence and orient people to the right directions. Strong and effective interpersonal skills, comfortable delivering presentations to both, business and technical oriented groups.
Being good at documenting complex concepts such as security models and technical decisions.
Ability to communicate business level benefits of security technologies and services.
Capacity to learn new technology/concept quickly.
5+ years of experience as a Security Architect or significant and progressive experience in a related domain in a large enterprise.
7+ years of experience within Information Technologies.
Strong knowledge of:
Basic protocols: TCP/IP, DNS, HTTP, etc
Authentication and authorization protocols: Kerberos, NTLM, SAML2, Oauth2
Cryptosystems: TLS, PKI, GPG/PGP
Cryptography: Hash, HMAC, symmetric/asymmetric ciphers, crypto attacks
Security technologies: firewall, NgFW, proxy, WAF, NIPS/NIDS, SIEM, vulnerability scanners, exploitation frameworks
Operating Systems: Unix/Linux, Windows (AD)
Demonstrated software development skills with Open Source Software.
System administration and penetration testing experiences.
Understanding of MPLS, BGP and other routing protocols.
Experience in securing Industrial Control Systems and related components.