Security Architect

Security Architect – Platform Security Solution


Job Description
Information Security Technology (IST) has an opportunity for Platform Security Architect to join Security Architecture Team (SAT). Position description: Acts as a security expert to participate in the enterprise architecture development process and ensure security architecture and solutions are in compliance with Enterprise Architecture. Work closely with all groups within TIG to provide business lines with World-Class information security services. Interacts with other groups within,to develop and evaluate security solutions at the following layers: network, platform, data, business service, and application, focusing on platform security. Analyzes business impact and exposure based on emerging security threats, vulnerabilities, and risks to customer data and enterprise infrastructure. Ensures adequate security solutions are in place to mitigate the risk in order to meet business objectives and regulatory requirements. Develops and maintains business system and corporate architectures. Responsible for working on medium to high architectural impact projects, recommending exceptions to the Enterprise Architecture for low to medium impact projects, reviewing and approving low architectural impact designs and directing implementation of the architecture for multiple applications or a component family. Conducts complex technology and system assessments for component architecture. Acts as a lead in component architecture and participates in enterprise architecture activity. Provides in-depth technical and systems consultation to internal clients and technical management to ensure alignment with the Enterprise Architecture.


Minimum Qualification
Extensive experience in analyzing information security risks, designing and developing security policies, standards, guidelines, and solutions. 7-10 years working experience with operating systems, such as Windows and Unix, directory services, and system management technologies and security solutions. Familiar with desktop and remote access security architecture and its supporting infrastructures. Understanding the vulnerabilities, exposures, and risks associated with network protocols and platforms: TCP/UDP, RPC, FTP, TELNET, DNS, SMTP, HTTP, XML, SOAP, Microsoft Windows, and .NET. Able to assess, recommend, and integrate security solutions for servers and workstations, such as access control, IDS, VPN, personal firewall, anti-virus, policy management, software distribution, and patch management. A strong team player with excellent analytical and consultative skills. 4 year degree.



Preferred Skills
Strong knowledge of regulatory requirements and information security risk management framework. Experience with the following security technologies and protocols: Active Directory, Windows platform security, PKI, LDAP, Kerberos, TACACS/RADIUS, Personal Firewall/VPN, HIDS/NIDS, SSL, IPSec, TopSecret, WLAN/WPA, XML/SOAP security. Certifications: CISSP, GIAC, MCSE 2000 or later, etc.



Position can be located in Minneapolis, MN, Chandler, AZ, or San Francisco, CA.
REQUIREMENTS
7-10 years working experience with operating systems, such as Windows and Unix, directory services, and system management technologies and security solutions, Understanding the vulnerabilities, exposures, and risks associated with network protocols and platforms: TCP/UDP, RPC, FTP, TELNET, DNS, SMTP, HTTP, XML, SOAP, Microsoft Windows, and .NET.