Expert - Cloud and DevOps Security Architect

At Globe, our goal is to create a wonderful world for our people, business, and nation. By uniting people of passion who believe they can make a difference, we are confident that we can achieve this goal.

Job Description

Highly experienced Security Architect in the design and development of cybersecurity and privacy solutions for the OneGlobe group in various public and private cloud technologies, acting as a thought leader in Cloud security and SecDevOps.

JOB DESCRIPTION

• Be highly experienced in the architecture and development of business solutions in various public and private cloud technologies, acting as a thought leader in Cloud and IAM security
• Be technically expert in various industry standard security technologies, methodologies and approaches
• Has experience of estimating and costing to implement Cloud and IAM security solutions and of populating cost models and validating costing data and assumptions
• Learn and evolve continuously with the fast changing cloud marketplace
• Lead technical design and first instance deployment of multiple projects including security solutions for internal and external IaaS and PaaS clouds and Identity and Access Management and Governance
• Provide leadership in evaluating / developing technology, designing solutions to address business problems, participate in recommending changes to existing controls and systems
• Contributes subject matter expertise advice in the areas of Cloud security automation at both the enterprise and project level with a focus towards cloud security
• Assists project teams during system design with the drafting of logical architectural and design models with a focus on cloud security
• Assists project teams during system design to promote the efficient deployment of IT assets to cloud environments in a secure and policy compliant manner

QUALIFICATIONS

Must Have:

• Experience with doing the security architecture evaluation and to create and follow a process for assessing security exceptions
• Strong background with cloud and security architecture and application development. Certifications such as AWS Sysops Administrator, AWS Developer or AWS Solutions Architect are a plus but not required. 
• Intermediate background in networking for WAN, Data Center, Telcos. Certifications such as Network+, CCNA or Certified Telecommunications Network Specialist (CTNS) are a plus but not required. 
• Preferably with experience managing compliance with a major regulatory body or security frameworks such as PCI, HIPAA or NIST-CSF
• 2-4 years of experience in application security including expertise in security assessments and penetration testing of applications
• University degree in Computer Science or a related field
• CCSP (Certified Cloud Security Professional) and/or security certifications, such as CISSP, CISA, CRISC, CISM, CCSK, Security+, Pentest+, CASP+, CEH or any related certifications from a major cloud service provider preferred 
• Cloud Security Certifications like AWS Certified Security Specialty are preferred

Nice to Have:

• Knowledge of conducting security checks (static and dynamic code analysis, vulnerability analysis in applications and penetration tests, security component analysis)
• Understanding or virtualization and container technologies (Docker, Kubernetes, OpenShift, …)
• Familiarity with DevOps Automation: Puppet, Ansible, GitHub, AWS Codepipeline, Terraform, AWS Cloudformation
• Familiarity with API Security, Container Security, AWS Cloud Security
• Familiarity with Amazon AWS Policy, Configuration, and Security Management tools (AWS Control Tower, AWS Guard Duty, AWS Shield, AWS WAF, etc)
• Experience with security automation 
• Experience working with Developers, DevOps, and Engineering teams in a dynamic environment to promote/implement the DevSecOps program throughout the organization.
• Experience coordinating and performing vulnerability assessments through the use of automated and manual tools (Tenable, NMAP, etc).
• Ability to review and analyze vulnerability data to identify security risks to the organization's network, infrastructure, and application's and determine any reported vulnerabilities that are false positives.
• Capability to prepare security vulnerability and risk management reports for management.
• Proficiency in any Programming Language and Bash, Python, Powershell or other scripting languages.
• Comprehension in the security areas of Key Management Systems, Certificate Management, Encryption, Penetration Testing, Vulnerability Scanning, Security and Monitoring tools, etc.
• Experience configuring, implementing and leveraging computer security and networking diagnostic/monitoring tools.
• Ability to work with APIs and Plugins to integrate security tools into established CI/CD pipelines.

Make Your Passion Part of Your Profession. Attracting the best and brightest Talents is pivotal to our success. If you are ready to share our purpose of Creating a Globe of Good, explore opportunities with us.