Principal Cloud Security Architect – Utah or Tempe, Az.
Our clients are the game changers, leaders and investors who fuel the global innovation economy. They’re the businesses behind the next medical breakthroughs. And the visionaries whose new technologies could transform the way people live and work. They come to the Company for our expertise, deep network and 30+ years of experience in the industries we serve, and to partner with diverse teams of passionate, enterprising the Company, dedicated to an inclusive approach to helping them grow and succeed at every stage of their business.
Join us at the Company and be part of bringing our clients’ world-changing ideas to life. At The Company, we have the opportunity to grow and collectively make an impact by supporting the innovative clients and communities the Company serves. We pride ourselves in having both a diverse client roster and an equally diverse and inclusive organization. And we work diligently to encourage all with different ways of thinking, different ways of working, and especially those traditionally underrepresented in technology and financial services, to apply.
Job Description
Cloud Security Architect provides cyber security advisory services to business units at the Company, and supports IT initiatives and business projects by recognizing security risks and implementing security controls within public and private cloud environments, in adherence to the Company security policies and standards.
The Cloud Security Architect directly engages The Company IT teams to integrate new and existing security solutions.
The Architect will be assigned to large, enterprise and mission critical projects and implement security strategy and architecture, in order to protect the Company assets, manage risk, and maintain compliance.
Knowledge:
· Deep understanding of security architectures, defense in depth, cloud and on-prem security models and concepts
· Proficient in designing and deploying IaaS security solutions, preferably in AWS public cloud.
· Experience and working knowledge of network architecture, subnetting, and TCP/IP protocols, and OSI model layers and protocols at each model layer
· Understanding of international and United States laws and regulations impacting cyber security and personal data privacy, including GLBA, SOX, and the FFIEC Information Security requirements
· Working knowledge of security frameworks and control references such as NIST CSF, CIS 20, COBIT, PCI DSS, OWASP, ISO 27000 family and NIST SP 800 series.
· Familiar with various security architectures and methodologies (Defense in Depth, Segmentation, Least Privilege, Zero-Trust, Kill-Chain, etc.)
Skills:
· Excellent analytical and problem solving skills
· Ability to demonstrate empathy while seeking common interests; effective problem and conflict resolution skills
· Scripting skills (Shell, Python, Java, PHP, PowerShell, etc.) preferred but not required
· Familiar with government security standards and regulations including GLBA, SOX, PCI, COBIT, ITIL - Familiar with various security architectures and methodologies (Defense in Depth, Kill-Chain, NIST, Critical Controls, OWASP, etc.)
· Leadership qualities, desire to influence horizontally and vertically, and mentor team members.
· Excellent written and verbal communication skills
Education/Experience:
· Bachelor’s degree in management Information Systems, Computer Science, and/or Business, or equivalent work experience
· 7+ years working in IT security domain
· Experience implementing, supporting, or defining requirements for security tools such as WAF, SIEM, IPS, CASB, EDR
· Experience with AWS public cloud services and security tools - Experience with SIEM technologies.
· Experience with cloud technologies specifically AWS. - Experience with AWS in a security environment preferred. –
· Experience working with Windows and Linux operating systems
· Experience working with firewalls and network IDS/IPS
· Experience doing vulnerability assessments, risk assessments and penetration testing
Certifications:
One or more of the following professional certifications: CISSP, CISM, SANS GIAC, CISA, Security+, AWS Solutions Architect, AWS Security Specialist (or willingness to obtain within 6 months) Strong demonstrated knowledge of networking and TCP/IP protocol or networking certification (CCNA)
For more than 35 years, The Company and its subsidiaries have helped innovative companies and their investors move bold ideas forward, fast. The Company Financial Group's businesses, including The Company, offer commercial and private banking, asset management, private wealth management, brokerage and investment services and funds management services to companies in the technology, life science and healthcare, private equity and venture capital,, The Company operates in centers of innovation around the world.
