Cybersecurity Architect

Komatsu is an indispensable partner to the construction, mining, forestry, forklift, and industrial machinery markets, maximizing value for customers through innovative solutions. With a diverse line of products supported by our advanced IoT technologies, regional distribution channels, and a global service network, we tap into the power of data and technology to enhance safety and productivity while optimizing performance. Komatsu supports a myriad of markets, including housing, infrastructure, water, pipeline, minerals, automobile, aerospace, electronics, and medical, through its many brands and subsidiaries, including Joy, P&H, Montabert, Modular, Hensley Industries, NTC, and Gigaphoton.

We’re more than a company, and we’re a community of passionate, creative professionals striving toward a shared vision: revolutionizing the way the mining industry operates. With a presence stretching from Johannesburg to Vancouver, Sydney to Lima, you are part of a global brand that supports creativity, fosters innovation, and encourages you to think big, share ideas and be yourself. 

The Company

Job Purpose

The Security Architect – DevSecOps is part of the MTS Cloud Center of Excellence, reporting to the Manager/Architect, Cloud Center of Excellence. The role will support key development projects in Azure as it pertains to cybersecurity architecture, security controls to address vulnerabilities and specifically – the definition of DevSecOps processes and incident response to support secure operations of MTS products and platforms.
 

Travel Requirements

Up to 25%

Job Duties and Responsibilities

•    Assist in developing the vision for security systems and assess the organization's IT and computer systems.
•    Plan, investigate, and build reliable, powerful, and flexible security architecture.  
•    Perform penetration tests, vulnerability testing, including risk analysis, and security assessments, on the complete infrastructure.  
•    Investigate the latest security standards, recent security systems, and renewed authentication protocols and make recommendations.  
•    Assist in the creation of standards for all IT assets, such as routers, firewalls, LANs, WANs, VPNs, and other network devices, and determine their efficacy and efficiency. 
•    Ensure that all firewalls, VPNs, routers, servers, and IDS scanning technologies are reviewed and approved before installation.    
•    Provide junior security personnel with technical guidance, mentorship, and supervision.

Required Skills

•    Minimum 5 years relevant experience 
•    Expert in security best practices for code deployment scanning using tools such as Sonar Qube, Rapid7, Wiz.io and / or tools of this function
•    Knowledge of cloud-native security tools and services.
•    Understanding of Azure security tools such as Defender and Policy
•    Ability to lead development teams in corporate security initiatives
•    Expert in automation of security scanning and enforcements 
•    Extensive knowledge if information systems and how they interact
•    In-depth knowledge of security protocols, cryptography, and security operations.
•    Proven experience integrating security into DevOps processes.
•    Proficiency in scripting and programming languages (e.g., Python, Bash).
•    Hands-on experience with automation/configuration management tools.
•    Experience securing cloud environments (e.g. Azure).
•    Conducting vulnerability assessments and penetration testing.
•    Proficiency in Infrastructure as Code tools.
•    Experience with CI/CD pipelines and integrating security checks.
•    Ability to conduct threat modeling exercises.
•    Strong analytical and problem-solving skills.
•    Incident response and forensic analysis experience.
•    Continuous learning and adaptability to new security trends.
•    High level of self-motivation and leadership skills.

Desired Skills

Komatsu is an Equal Opportunity Workplace and an Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.