Sr Security Solu Arch

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

Qualys is looking for an experienced Sr. Security Solution Architect with a minimum of 12 years of experience in IT Security. The ideal candidate will have a broad understanding of overall IT security.

As an Sr. Security Solution Architect, you will be a trusted advisor to internal IT Operations teams and other information security teams. You will provide valuable insights and education on asset and vulnerability management, patching, threat detection & response, compliance, and cloud and application security by leveraging Qualys security platforms.

Key Responsibilities:

· Implement and manage Qualys modules, including Vulnerability Management, Patch Management, Cybersecurity Asset Management, Cloud Agent, Endpoint Detection and Response, and virtual and physical appliances.

· Design, develop, and implement Sr. Security Solution Architect and strategy.

· Evaluate business needs to understand security requirements, conduct system security vulnerability and risk analyses, and identify risks associated with business processes and operations.

· Develop and showcase various Vulnerability Management use-cases/requirements, demonstrating how security platforms can address these needs.

· Collaborate with Product Managers to ensure urgent and important security requirements are included in product release planning.

· Identify security design gaps in existing and proposed architectures, recommending changes or enhancements.

· Participate in rigorous internal product testing and evaluation.

· Provide technical support during deployment, configuration, integration, and administration of security technologies.

· Plan, implement, and upgrade security measures and controls.

· Assist teams with product installation, setup, configuration, and larger rollouts.

· Work in partnership with Engineering and IT teams to improve the security posture.

Knowledge, Skills, and Abilities:

· Bachelor's degree in Information Technology, Information Security, or a related field.

· 12+ years of experience in Cyber Security domain .

· In-depth knowledge of the cybersecurity threat landscape and attack techniques.

· Technical proficiency in Windows, Linux, and macOS.

· Experience with Qualys or other security and compliance platforms.

· Strong understanding of TCP/IP fundamentals and various operating systems.

· Experience in vulnerability management and remediation for endpoints and servers.

· Knowledge of VMware and other virtualization products.

· Proficiency in managing incident response alerts and events with EDR tools.

· Experience analyzing, troubleshooting, and investigating security incidents from various platforms such as IPS/IDS, DLP, SIEM, and vulnerability monitoring systems.

· Knowledge of PKI, VPNs, Firewalls, IDS, TLS, and incident handling.

· Exceptional verbal and written communication skills.

· Ability to fulfill periodic on-call responsibilities.

· Ability to work constructively in a team environment.

· Email security using tools like Proofpoint/Mimecast/IronPort, utilizing SPF, DKIM, DMARK, and user impersonation.

Preferred Qualifications:

· Experience in a SaaS company is highly desirable.

· CISSP / CISM / SANS IT certifications.

· Knowledge of ISMS frameworks and handling audit queries.