Network Security Design Required 7 Years
IT Security Architecture; designing and deploying security solutions Required 7 Years
Windows platform security Required 7 Years
UNIX Linux platform security Required 7 Years
Application security Highly desired 5 Years
Identity and Access Management Highly desired 5 Years
Threat Management, vulnerability analysis Highly desired 5 Years
Data Loss Prevention Nice to have 1 Years
IPS / IDS and Web Proxies Highly desired 3 Years
PCI DSS Compliance / Security Audit Required 1 Years
Security Certification (CISSP, GIAC, CRISC, CCNP/CCNA) Nice to have
The Information Security Architect is responsible for planning and maintaining enterprise-wide information security framework and architecture in accordance with current PCI DSS and security standards.
Candidate will have experience in IT Security engineering and architecture, strong knowledge of PCI DSS as well as on experience designing and deploying security solutions.
- The candidate will report to the Information Security Unit and partner and collaborate with Information Security staff, the IT Enterprise Architect and IT staff to achieve a high-level of enterprise security and ensure that the design / implementation of all business solutions meet the Judiciary security policies, standards and applicable compliance mandates.
- Strong knowledge in PCI DSS compliance, network security design, architecture and implementation.
- Domain expertise in 3 or more of the following areas: network security, network architecture and routing, Windows platform security, UNIX/Linux platform security, encryption, threat management, application security, database management / security, data governance, entitlements management, identity and access management, data loss prevention, PKI, authentication technologies.
- Strong understanding of systems security or vulnerability analysis and design is a must. Guiding development teams to address these security issues.
- Work and collaborate with auditors. Experience with Security Audit project such as PCI DSS.
- Ability to assist with policy and standards documentation.
- Knowledge of routing protocols; understanding of Network Layer concepts and technologies, packet-level understanding of basic TCP/IP protocols, understanding of VPN technologies to include GRE and IPSec.
- Detailed understanding and configuration experience of routing, firewall and load balancing technical capabilities. -
- Through knowledge of IPS/IDS and Web proxies.
- Knowledge of application security, authentication and access management.
- Current knowledge of security threats and security tools.
- Hands on experience with ethical hacking and incident response.
- Demonstrated ability to communicate at multiple levels from highly technical to business.
- Abilitiy to identify, understand and communicate complex network and security issues effectively.
- Understanding of XML, Java, dotnet and scripting tools.
Years of Relevant Experience: 7 plus years
Preferred Education: 4 year college degree or equivalent technical study and Security Certifications a plus (ie CISSP, CISM, GIAC, CRISC, CCNP/CCNA)
Knowledge of security management framework such as ISO 27001/27002 and web application security standard such as SANS, OWASP