Envista Senior Information Security Architect (Hybrid-Brea, CA)

Job Description:

JOB SUMMARY:

The Sr. Information Security Architect contributes to our success by leading the Cybersecurity Engineering team through design, development, deployment, monitoring and alerting of security services. As a Senior Information Security Architect, you will work with architects, business, and IT teams to ensure that security is applied to digital products, technology platforms and information within the organization in accordance with established standards and policies.

PRIMARY DUTIES & RESPONSIBILITIES:

• Top level technical expert in all areas of Information Security with broad understand of networking, systems, IoT devices, ERP systems, and AWS and Azure cloud technology.
• Champions change, drives and sets technical direction affecting multiple global groups/business units and product design.
• Conducts security briefings and other types of security training to foster an awareness of the security program throughout the Envista companies.
• Further develop and documents the security architecture vision and strategy.
• Oversees the evaluation and selection of hardware and software security products and design of standard configurations.
• Assists in budgeting for security analysis and security-related implementation tasks.
• Provides consultative and implementation guidance on projects focusing on planning, development, implementation, and operationalization of strategic security technology directives.
• Provides leadership in the adoption of NIST, ISO, PCI, HIPPA, SOX and other compliance frameworks.
• Design and help secure future versions of our SaaS / Cloud solutions.
• Provide technical expertise in incident response events as needed.
• Stay up to date with trends in the information security community.

Job Requirements:

• Bachelor’s degree or equivalent relevant experience in the field of computing or computer science or a related field.
• 6+ years information security experience.
• Possess deep understanding of the information security principles, concepts, methods, and best practices; expert knowledge in computer security exploitation and compromised.
• Extensive knowledge of the administration and management of multi-dimensional operating systems, databases, and applications.
• Thorough understanding of standard network model and risks present at each layer, cryptography and the functions of key management, SSL, and TLS.
• Thorough understanding of multi-tier application security, system authentication technologies and concepts of Identity Management and associated technologies.
• Practical experience in performing risk assessments leading to formulating and mapping privacy, information security policy and standards to ensure compliance with regulatory and legislative compliance (PCI, SOX, HIPPA, GLBA).
• Strong understanding of security technology (PKI, SIEM, DLP, IPS, WAF, Firewalls, Anti-Virus, etc.)
• Strong understanding of security testing and remediation requirements.
• Strong understanding of authentication systems and multi factor technology.
• Strong understanding of application development security.
• A solid knowledge of Information Security best practices for IP networks, desktop, and data security management.
• Understanding of Azure , GCP and AWS components.
• Understanding of containers (Docker/Kubernetes).
• Understanding of deploying and monitoring of solutions (git, Terraform, Ansible, Jenkins).

PREFERRED QUALIFICATIONS:

• CISSP (Certified Information Systems Security Certified Professional)
• SSCP (Systems Security Certified Practitioner)
• CISA (Certified Information Systems Auditor),
• CISM (Certified Information Security Management)
• CCNA, CCNP, MSCE
• Demonstrated ability to organize, plan and carry out assignments with minimal supervision.
• Loves experimenting with new technologies and concepts, bring them forward to the team, and deploy and teach them, while having respect for adoption difficulties and proposed alternatives.

#LI-SC1

IND123

Target Market Salary Range:

Actual compensation packages take into account a wide range of factors that are unique to each candidate, including but not limited to geographic location; skill sets; relevant education and certifications; depth of experience; performance; and other business and organizational needs. The disclosed reasonable estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled.  At Envista, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. The total compensation package for this position may also include an annual performance bonus, medical/dental/vision benefits, 401K match, and/or other applicable compensation plans.

Operating Company:

Envista is a global family of more than 30 trusted dental brands, united by a shared purpose: to partner with professionals to improve lives. Envista helps its partners deliver the best possible patient care through industry-leading products, solutions, and technology. Our comprehensive portfolio, including dental implants and treatment options, orthodontics, and digital imaging technologies, covers an estimated 90% of dentists’ clinical needs for diagnosing, treating, and preventing dental conditions as well as improving the aesthetics of the human smile.

Envista and all Envista Companies are equal opportunity employers that evaluate qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity, or other characteristics protected by law. The “EEO is the Law” poster is available at: http://www.dol.gov/ofccp/regs/ compliance/posters/pdf/eeopost.pdf.

Envista and its family of companies (Envista) will not accept unsolicited resumes from any source other than directly from a candidate.  Envista will consider unsolicited referrals and/or resumes submitted by vendors such as search firms, staffing agencies, professional recruiters, fee-based referral services and recruiting agencies (Agency) to have been referred by the Agency free of charge and Envista will not pay a fee for any placement resulting from the receipt such unsolicited resumes.  An Agency must obtain advance written approval from Envista's internal Talent Acquisition or Human Resources team to submit resumes, and then only in conjunction with a valid fully-executed contract approved by the Global Talent Acquisition leader and in response to a specific job opening.  Envista will not pay a fee to any Agency that does not have such agreement and written approval in place.