Job Title: Security Architect
Location: Remote
Duration: 12+ months contract
Location: Remote
Duration: 12+ months contract
Knowledge, Skills, and Abilities Required:
Expertise in conducting product research to make informed information security assessments.
Expertise in application security
Expertise in the assessment of System Security Plans and Third-Party Audit documents such as SOC2 reports to develop information security position reports.
Ability to coordinate with other subject matter experts to develop a concise position on IT products and services from an information security perspective.
Ability to develop reports pertaining to vendor provided IT products and services.
Ability to document procedures and diagrams related to security architecture.
Ability to conduct research, analyze, and communicate the security and regulatory impact of risk to executive level management in a concise manner.
Familiarity with Cloud and Network Security concepts and tools.
Familiarity with information security system standards and certifications such as ISO-27000 family and FedRAMP.
Familiarity in risk assessment processes for information technology systems as outlined in NIST Publications.
Familiarity with information security controls outlined in NIST Special Publication 800-53.
Familiarity with security compliance to federal audit agency requirements for different data types (e.g., Federal Tax Information, Criminal Justice Information, Social Security Information, Affordable Care Act Information).
A high level of attention to detail reviewing complex documents related to information security.
Expertise in conducting product research to make informed information security assessments.
Expertise in application security
Expertise in the assessment of System Security Plans and Third-Party Audit documents such as SOC2 reports to develop information security position reports.
Ability to coordinate with other subject matter experts to develop a concise position on IT products and services from an information security perspective.
Ability to develop reports pertaining to vendor provided IT products and services.
Ability to document procedures and diagrams related to security architecture.
Ability to conduct research, analyze, and communicate the security and regulatory impact of risk to executive level management in a concise manner.
Familiarity with Cloud and Network Security concepts and tools.
Familiarity with information security system standards and certifications such as ISO-27000 family and FedRAMP.
Familiarity in risk assessment processes for information technology systems as outlined in NIST Publications.
Familiarity with information security controls outlined in NIST Special Publication 800-53.
Familiarity with security compliance to federal audit agency requirements for different data types (e.g., Federal Tax Information, Criminal Justice Information, Social Security Information, Affordable Care Act Information).
A high level of attention to detail reviewing complex documents related to information security.
Minimum Qualifications:
Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
Minimum of 5 years of experience in information security, with at least 3 years in a security architecture or related role.
In-depth knowledge of security principles and practices, including application security, risk assessment and management, security architecture, compliance, and security testing.
Experience with security technologies, including firewalls, intrusion detection and prevention systems, vulnerability scanners, and endpoint security solutions.
Knowledge of industry standards and regulations, such as NIST, CIS, HIPAA, and FISMA.
Strong analytical and problem-solving skills, with the ability to think creatively and strategically to develop effective security solutions.
Excellent communication and interpersonal skills, with the ability to work collaboratively with internal and external stakeholders.
Professional security certifications, such as CISSP, CISM, or CISA, are highly desirable.
Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
Minimum of 5 years of experience in information security, with at least 3 years in a security architecture or related role.
In-depth knowledge of security principles and practices, including application security, risk assessment and management, security architecture, compliance, and security testing.
Experience with security technologies, including firewalls, intrusion detection and prevention systems, vulnerability scanners, and endpoint security solutions.
Knowledge of industry standards and regulations, such as NIST, CIS, HIPAA, and FISMA.
Strong analytical and problem-solving skills, with the ability to think creatively and strategically to develop effective security solutions.
Excellent communication and interpersonal skills, with the ability to work collaboratively with internal and external stakeholders.
Professional security certifications, such as CISSP, CISM, or CISA, are highly desirable.