GCI's Enterprise Cloud Security Architect will be responsible for evaluating new solutions and developing the security controls required to incorporate new technologies in a safe and secure manner. GCI currently maintains many complex applications and your focus on security for infrastructure systems and business applications will be paramount to our success. The ideal candidate will have extensive experience in cloud-based development and security management in IaaS, PaaS, and SaaS environments.
Responsible for gathering technical requirements, architecting solutions, and executing deliverables while addressing GCI policies for public and private cloud solutions. Lead and coordinate the work of an integrated project team comprised of multiple technical disciplines, including developers, subject matter experts, database administrators, system administrators, and system architects to implement and maintain enterprise-level information technology applications. Serve as an advisor to leadership concerning the planning, development, design, procurement, maintenance, and implementation of enterprise-level Cloud systems.
Perform the necessary leadership, facilitation, analysis, and design tasks related to the development of Enterprise Security architectures; enabling the business to operate securely, protect its people, defend its assets, and preserve shareholder value. Responsible for the security related domains within Enterprise Architecture frameworks. Guides and approves the deployment of new security solutions while playing a key role in managing enterprise technology life cycles on a broad basis. Development and implementation of a comprehensive vision and strategy that drives “security by design.”
ESSENTIAL DUTIES AND RESPONSIBILITIES AT ALL LEVELS: Provide technical security architecture guidance and serve as an information security advisor on business applications and infrastructure supporting GCI’s corporate and external networks, including cloud. Establish multi-cloud cybersecurity architecture with a focus on proactive threat detection, security control enforcement and incident response. Determine security requirements by evaluating business strategies and requirements, applying security policies and security best practices. Support the organization as subject matter expert by providing mentorship and cross-training. Develop high-level actions plans to mitigate risk potential within individual departments and throughout the organization. Develops strategy and roadmaps of the enterprise security portfolio. Function as a solutions architect for the implementation of security tools within GCI. Design, integrate, and implement information systems security infrastructure. Assess potential systems and process vulnerabilities to determine security infrastructure requirements. Recommend and implement changes to enhance systems security and prevent unauthorized access. Collaborate with enterprise and domain architects to develop cloud solutions and an Enterprise Cloud Strategy, frameworks, policies, standards, and guidance. Champion the implementation of industry leading cloud security standards and best practices across the enterprise. Provides advice, analysis, and recommendation on the security products in the cloud security space. Reports to Senior and Executive Management on technical status of Enterprise Security initiatives.COMPETENCIES: ACCOUNTABILITY- Takes ownership for actions, decisions, and results; openly accepts feedback and demonstrates a willingness to improve. Own and manage priorities and individual tasks without direct supervision. Take initiative and seek out opportunities. Assess and accept risks and learn from mistakes. BASIC PRINCIPLES - Interacts with people in a way that builds mutual trust, confidence, and respect; adheres to GCI’s Code of Conduct for Employees – the Basic Principles. COLLABORATION - Works effectively with others to accomplish common goals and objectives; maintains positive relationships even under difficult circumstances. Strong influencing, negotiation, and conflict resolution skills – able to convince and obtain commitment when dealing with business stakeholders and third-party suppliers. Ability to interact with GCI's personnel at all levels and across all business units and organizations, and to comprehend business imperatives. COMMUNICATION- Conveys thoughts and expresses ideas appropriately and professionally. Excellent verbal and written communication skills and the ability to interact professionally with a diverse group of executives, managers, and subject matter experts. Strong Consulting, Facilitation, Negotiation, and Presentation skills. COMPLIANCE - Follows internal controls; protects confidential information; abides by GCI’s Code of Business Conduct & Ethics. CUSTOMER FOCUS - Demonstrates commitment to service excellence; gives high priority to customer satisfaction. RELIABILITY - Consistently follows through on assigned tasks as expected; demonstrates timely attendance at meetings, training, and other work obligations. RESULTS - Uses a combination of job knowledge, initiative, sound decision making, innovation, adaptability, and problem solving. Support the thought leadership of the discipline of Enterprise Security Architecture across the technology, operations, and business areas. Clearly document findings and recommendations, to a variety of audiences Superior analytical and problem solutions skills with the ability to apply multiple technical solutions to business problems. Ability to quickly comprehend the functions and capabilities of new technologies. Strong business acumen to understand enterprise strategy, desired outcomes, opportunities, and risks with the ability to ability to estimate the financial impact of technical architecture alternatives. Lead by example on all fronts. Guide architecture, design and development teams in a manner that creates success and allows for future self-sufficiency. SAFETY & SECURITY - Supports a safe work environment by following all workplace safety rules and guidelines; complies with applicable Security policies and procedures.
Technical Competencies:
Proficient computer skills and MS Office knowledge (e.g., Outlook, Teams, Word, Excel) to complete job duties effectively. Deep understanding of Cloud Security Architectures as they relate to Azure, AWS, and other cloud platforms. Familiar with security solutions and risks associated with SaaS, PaaS, and IaaS cloud deployment models. Knowledge of how to apply native cloud security and monitoring services in the cloud in concert with established security design principles. Common regulatory controls, such as: ISO 27001, NIST 800-53, SOX, PCI, SOC 2, HIPPA, COSO and COBIT. Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes, such as: Secure software development, application security, data protection, cryptography, key management, identity and access management (IAM). Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc.). Proven knowledge and hands-on experience using DevOps technologies (e.g., Jenkins, Gitlab, GitHub, Artifactory, etc.), Chef, Puppet, BOSH, or related automated/orchestration tools. Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies. Experience performing threat modeling and design reviews to assess security implications and requirements for introduction of new technologies. Experience representing technical viewpoints to diverse audiences and in making timely and prudent technical risk decisions. Knowledge of virtualization, containers, service-mesh, and enterprise service bus. Experience with structured Enterprise Architecture practices, hybrid cloud deployments, and on-premises-to-cloud migration deployments. Strong foundation on TOGAF or equivalent architecture framework.
Grade: E07
Additional Job Requirements:
This level Architect requires a specific level of expertise; must be an expert in the discipline with the ability to make technical decisions independently on significant design problems. Capable of working on complex projects. Expected to serve as a liaison with multiple business units and teams, providing technical leadership, oversight.
Additional Competencies:
Good project and program management skills. Excellent troubleshooting and problem-solving skills. Demonstrate strong organizational and time management skills.Minimum Qualifications:
Required: *A combination of relevant work experience and/or education sufficient to perform the duties of the job may substitute to meet the total years required on a year-for-year basis
High School diploma or equivalent. Bachelor’s degree in Computer Science, Engineering, Cyber Security, or related field. * Minimum of four (4) years of progressively responsible experience with Cloud platforms such as Amazon Web Services (AWS), Azure, or VMware NSX. *Preferred:
Project Management or Telecommunication experience. Relevant telecom industry or job specific certifications. CCSP: Certified Cloud Security Professional CCSK: Certificate of Cloud Security Knowledge TOGAF 9 Enterprise Architecture Certification AWS Certified Solutions Architect - Professional CISM: Certified Information Systems Manager CRISC: Certified in Risk and Information Systems Control CISSP: Certified Information Systems Security Professional GSLC: GIAC Security Leadership GMON: GIAC Continuous Monitoring SABSA Chartered Security Architect certification
DRIVING REQUIREMENTS:
This position may require access to reliable transportation for occasional travel between retail store locations, offices, worksites, or other locations as needed.
PHYSICAL REQUIREMENTS and WORKING CONDITIONS:
Work is primarily sedentary, requiring daily routine computer usage. Ability to work shifts as assigned, work in standard office/home office setting, and operate standard office equipment. Ability to accurately communicate information and ideas to others effectively. Physical agility and effort sufficient to perform job duties safely and effectively. Ability to make valid judgments and decisions. Must be willing and able to work a flexible schedule, including additional time on weekends, holidays, before or after normal work hours to meet goals and deadlines. Must work well in a team environment and be able to work with a diverse group of people and customers. Virtual workers must comply with remote work policies and agreements.
The company and its subsidiaries operate in a 24/7 environment providing critical services to Alaskans and may need to respond to public health and safety matters or other business emergencies. Due to business needs employees may be contacted outside of the core business hours to respond to an immediate emergency. As such, you will be requested to provide emergency after hours contact numbers, to include your home and cell phone numbers if you have those services.
Diversity, Equity, and Inclusion: At GCI, we foster a culture of inclusivity by nurturing an environment where the varied perspectives of our employees, customers, and fellow Alaskans are celebrated. We add value to our community as we grow and empower a diverse workforce that provides equitable opportunity for every Trailblazer.
EEO: GCI is an equal opportunity employer. Qualified applicants are considered for employment without regard to race, color, religion, national origin, age, sex, sexual orientation, gender identity, marital status, mental or physical disability, veteran status, or any other status or classification protected under applicable state or federal law.
DISCLAIMER: The above information in this description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.
All employees of GCI work in support of the GCI Mission Statement and Declaration of Principles which are located on the GCI Career page and Employee portal.