Description

Job Description: The Security Architect will partner with Enterprise Architects, Infrastructure and Development Teams to develop a deep technical understanding of Horizons technology ecosystem. Incumbent will conduct architecture reviews, threat modeling, identify risks and advise IT, business owners and technical teams on options to mitigate the risk. The candidate must have excellent verbal and written communication skills. Review enterprise architecture diagrams and recommend security related enhancements. Model attack vectors and design security controls to mitigate risk. Strong knowledge of cloud security concepts with SaaS, PaaS and IaaS platforms and the architectural knowledge of Amazon Web Services (AWS) and Microsoft Azure cloud services. Plan, design, develop and maintain security technologies, diagrams, processes and procedures. Develop and implement enterprise-wide and cross-functional integration solutions. Research and recommend new industry IT cyber security models, management strategies and effective resource utilization models that can be presented to Senior Leadership (i.e. Directors and above). Conduct technology reviews and audits that ensure computer systems are built to reference security architecture principles. Help build security into infrastructure and architecture designs and guide the implementation with the operations team. Create and deliver knowledge-sharing presentations and documentation to security, developers, and operations teams.

Role and Responsibilities

• Conduct cloud security planning to determine and describe security necessities Maintain knowledge of diverse cloud platforms Conduct infrastructure security planning, including firewalls, AppSec, IDS/IPS, SIEM, and scanners for detecting vulnerability Develop security criteria, procedures, and policies Establish and manage data access controls and provide identity, authentication, and access management design and oversight (IAM) Integrate cloud-aware authentication mechanisms Perform application vulnerability assessments and evaluations Provide guidance and oversight for the correction of discovered vulnerabilities Provide DevOps with security oversight and design guidance and oversee DevSecOps initiatives Perform security operations (SecOps) responsibilities Integrate security into the development lifecycle of software (SDLC) Manage the deployment of SIEM software and automated security alerts Monitor system activities, logs, and alerts Install and service security equipment Participate in the software development procedure Provide infrastructure support Provide guidance on systems hardening for cyber resilience Evaluate new security solutions and products Explore new threats, attack methods, and techniques Utilize security orchestration and response automation (SOAR)