Добавено на 2 months ago

Cloud Security Architecture Specialist

Населено мястоSofia grad, Sofia, Bulgaria PP Adecco

ПозицияSpecialist

Дата2020-03-20

КатегорияIT and Telecommunications




Cloud Security Architecture Specialist



As part of our strategic partnership with one of the biggest financial institutions in the World, we are hiring various IT specialists, who will become part of their new IT Service Center in Sofia. The bank is an international organization dedicated to providing financing, advice, and research to developing nations to aid their economic advancement. The bank predominantly acts as an organization that attempts to fight poverty by offering developmental assistance to middle- and low-income countries. Our client is a provider of financial and technical assistance to individual countries around the globe. The bank considers itself a unique financial institution that sets up partnerships to reduce poverty and support economic development.
RESPONSIBILITIES:
- Work with project teams to define security requirements for new systems in line with the enterprise information security architecture
- Provide security design recommendations based on enterprise information security architecture and solution patterns
- Provide guidance and assist in the development of security standards for IT platforms in line with the information security architecture
- Maintain an up-to-date understanding of emerging trends in information security architecture and apply new techniques and trends (in-line with overall information security objectives and risk tolerance of the company) to the company’s information security architecture
- Perform controls reviews and system assessments to develop risk profiles for IT systems and evaluate the efficiency and effectiveness of the IT control environment
- Maintain impartiality around IT systems to produce unbiased reports on information security risk
- Provide business units with recommendations to reduce information security risk within their areas
- Identify efficiencies to improve the performance and responsiveness of the ITSSR information security architecture function
- Prepare and present security design and architectural review reports to system owners, business units, and other
- Evaluate company’s current software security posture and propose mitigation and remediation plans to meet software security assurance requirements
- Translate technical security deficiencies into business risks that are understandable by business stakeholders in order to get buy-in for security investments
REQUIREMENTS:
MUST
- Bachelor’s degree in Computer Science, Information Systems, or a related technical field
- At least 2+ years of experience on a similar position
- Experience in providing guidance for data protection based on data sensitivity and associated business risk
- Experience with enterprise security architecture design and implementation for a financial services organization or other organizations with similar information security needs and requirements
- Experience guiding project team remediating such vulnerabilities
- Extensive knowledge of IT, enterprise architecture, software development life cycle, and information security platforms and applications
- Experience with reviewing or developing security-as-code in JSON or YAML format, e.g. AWS cloud formation template, Azure Resource Manager. - Provide guidance on the design and use of DevSecOps pipelines and use of security tools in such agile development methods.
- Ability to work well under pressure and meet tight deadlines
- High level of motivation, confidence, integrity, and responsibility
- Knowledge of best practices and standards for enterprise security architecture, specifically in the field of Identity & Access Management, Enterprise Content Management, Collaboration Tools, Service-Oriented Architecture, Cloud, Mobility, Data Analytics, and Web 2.0 related services
- Practical knowledge of common Web vulnerabilities as per SANS 25 or OWASP Top 10 specifications
- Excellent interpersonal skills including the ability to work independently and effectively in a team/task force as a team member or leader, and with senior staff and managers in the unit and elsewhere in the WBG
- Ability to collaborate with senior management stakeholders to identify requirements and drive compliance with approved standards
- English: Advanced/Fluent
ADVANTAGES
- Any of the below listed certifications will be a huge advantage:
- Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Global Information Assurance Certification (GIAC), and Information Systems Security Management Professional (ISSMP)
If you recognize yourself in the description above, send us your CV today! 
Only short-listed candidates will be contacted. All applications will be treated in strict confidentiality. Recruitment license from National Agency of Employment #1814 from 08.12.2014.

Последно преглеждани позиции