Cloud Security Architect
Posted on Aug 1, 2019 by CV-Library
We have an interesting role with a global provider of marketing solutions with over 50,000 employees, who specialize in consumer advertising, digital marketing, communications planning and media buying, public relations and specialty marketing.
Assist the Security Architecture function to perform reviews of cloud services, cloud-based applications and data security reviews to confirm that solutions considered for licensing, newly-acquired solutions and changes to solutions are compliant with the business policies and standards, and that the right security controls are applied to applications to keep data secure.
Assist the Security Architecture and Security Engineering functions, and Agencies to apply security controls such as multi-factor authentication, security information event management, encryption and key management, threat detection and web application firewalls to cloud services and applications.
Assist the Security Architecture and Security Engineering functions to extend its security architecture framework to cloud services, including identification of new controls to be applied.
Provide technical expertise to the Security Engineering and Security Architecture functions, and business Agencies during the full lifecycle of cloud security solution evaluation, recommendation, testing, installation, rollout and operations
Design, implement and support cloud security solutions in compliance with the business security-related standards, policies, procedures, and security architecture standards, guidelines, reference architectures and implementation patterns
Ensure that cloud security technologies are properly implemented and meet all applicable requirements. Proactively work with the IT Engineering and business Agencies to ensure all cloud security components are appropriately integrated into the overall enterprise technology
Collaborate with project teams, the Security Engineering and Architecture functions, and business Agencies in research and design phases of cloud solutions to ensure that information security is a fundamental quality
Assist the Security Engineering and Security Architecture functions, and business Agencies to research new cloud security technologies and their application to the corporate environment.
Design and document the implementation of a new system or new interfaces between systems
Follow best practices on Secure SDLC (e.g., threat modeling, integrating security considerations into the testing cycle)Qualifications:
Strong experience of reviewing the security of cloud services and cloud-based applications for alignment with security policy, security standards and best practices
Experience of the design and implementation of these security solutions in Amazon Web Services and Microsoft Azure cloud service platforms:
Experience of the design and implementation of security for software as a service (SaaS)
Experience of web server and web application security assessment and remediation
Experience or working knowledge of penetration testing methods for AWS and Microsoft Azure
A proven ability to interface across a global organization with other teams, such as EIS Engineering and Security, Corporate Applications, Enterprise Applications, Internal Audit, agency CIOs, and agency security teams and compliance coordinators, etc.
An analytical demeanor and the ability to effectively communicate with individuals across all levels the organization
Excellent written and verbal communications skills
Ability to adjust to changing priorities while multitasking effectively
Working knowledge of compliance frameworks and security management standards (e.g., CIS Controls, ISO 27001, COBIT, NIST CSF)
Working knowledge of best practices/standards (e.g., PCI DSS, HIPAA, State data breach laws) for implementing application-level data encryption Experience and Education
Bachelor's degree in Computer Science, Information Security and Risk Management, Information Systems, Engineering or related major
CISSP, GIAC or similar certification required
AWS certification preferred
12 years' progressive experience working in Information Technology with at least half of that directly in Information Security
Minimum 5 years' experience in a security architect role with experience in reviewing and approving the security of applications
Advertising and marketing communications industry experience preferred
Some key benefits include
Pension - 3% employee minimum contribution but the Company will match up to 6%
Life Assurance - x1 salary which goes up to x3 if in the pension
Income Protection after 2 years of service
25 days holiday
Flexible FridaysFlex benefits available once passed probation - inc gym, season ticket loan, cycle to work etc
Set up alerts to get notified of new vacancies.
£419 - £503 Daily
£650 - £700 Daily
£650 - £750 Daily
£650 - £700 Daily