Short Description:
The Information Security Architect is responsible for planning and maintaining enterprise-wide information security framework and architecture. The architect will ensure that the design/implementation of all business solutions meet security requirements
Complete Description:
Candidate will have experience in IT Security engineering and architecture, including hands on experience designing and deploying security solutions.
The candidate will report to the Information Security Unit and partner and collaborate with Information Security staff, the IT Enterprise Architect and IT staff to achieve a high-level of enterprise security and ensure that the design / implementation of all business solutions meet the Judiciary security policies, standards and applicable compliance mandates.
Strong knowledge in network security design, architecture and implementation.
Domain expertise in 3 or more of the following areas: network security, network architecture and routing, Windows platform security, UNIX/Linux platform security, encryption, threat management, application security, database management / security, data governance, entitlements management, identity and access management, data loss prevention, PKI, authentication technologies.
Ability to perform systems security or vulnerability analysis and design is a must. Guiding development teams to address these security issues.
Knowledge of routing protocols; understanding of Network Layer concepts and technologies, packet-level understanding of basic TCP/IP protocols, understanding of VPN technologies to include GRE and IPSec.
Detailed understanding and configuration experience of routing, firewall and load balancing technical capabilities. Through knowledge of IPS/IDS and Web proxies.
Knowledge of application security, authentication and access management.
Current knowledge of security threats and security tools.
Hands on experience with ethical hacking and incident response.
Experience with Security Audit project such as PCI DSS.
Demonstrated ability to communicate at multiple levels from highly technical to business.
Abilitiy to identify, understand and communicate complex network and security issues effectively.
Understanding of XML, Java, dotnet and scripting tools.
Years of Relevant Experience: 7 plus years
Preferred Education: 4 year college degree or equivalent technical study and Security Certifications a plus (ie CISSP, CISM, GIAC, CRISC, CCNP/CCNA)
Knowledge of security management framework such as ISO 27xxx and OWASP
Skills:
Skill
Required / Desired
Amount
of Experience
Network Security Design
Required
7
Years
IT Security Architecture; designing and deploying security solutions
Required
7
Years
Windows platform security
Required
7
Years
UNIX Linux platform security
Required
7
Years
Application security
Highly desired
5
Years
Identity and Access Management
Highly desired
5
Years
Threat Management, vulnerability analysis
Highly desired
5
Years
Data Loss Prevention
Desired
3
Years
IPS / IDS and Web Proxies
Desired
3
Years
PCI DSS Compliance / Security Audit
Desired
Security Certification (CISSP, GIAC, CRISC, CCNP/CCNA)
Nice to have