Digital Prospectors Security Architect in Boston, Massachusetts
Job Type: Contract
Recruiter: Chip Clarke at https://digitalprospectors.com/our-team/chip-clarke
Find your job at www.LoveYourJob.com
Job Title: Security Architect
Location : Boston, MA
Duration: 6+ Months
Provide oversight, guidance and prioritization to the sub team in systems requirements planning, systems security architecture, and continuous monitoring. Support the Chief Information Security Office in security program management and security human capital management. Liaise with IT partners to establish and maintain daily working relationship.
Security Program Management
Perform necessary due diligence activities to determine third-party vendor adherence with IT compliance requirements.
Serve as InfoSec Lead for initial detection, analysis, and investigation of security events to determine likelihood of compromise and respond according to Executive Information Security Incident Response processes.
Advise the CISO by identifying critical security issues; recommending risk-reduction solutions.
Communicate with customers to determine when InfoSec support is needed.
Integrate and share information with other analysts and other teams.
Security Human Capital Management
Manage, mentor and implement professional development plans for direct reports, working closely with Human Resources.
Assist in the management of a workforce by ensuring the fair and consistent application and strict adherence to the rules, regulations, collective bargaining agreements (if applicable) and policies of the Authority including the EEO, Anti-Discrimination and Anti-Harassment and Anti-Retaliation policies.
Systems Requirements Planning
Design and document security architecture guidelines and requirements.
Maintain a current understanding of technology trends to participate in evaluation of potential technology improvements or shifts.
Systems Security Architecture
Lead the development and improvement of architectural and security designs.
Serve as a subject matter expert to executive leadership on a range of cybersecurity best practices, architectures, solutions and technologies.
Provide cybersecurity architecture services to business partners to ensure the secure delivery of all technology.
Ensure architectures, technologies and solutions align with and integrate regulatory requirements and industry best practices.
Provide strategic and tactical cybersecurity guidance for technology projects.
Attend Change Advisory Board and Architecture Review Board Meetings.
Analyze the effectiveness of IT control activities and report on them, with actionable recommendations, to the CIO, the CISO and IT managers.
Develop applications scanning and monitoring capabilities.
Respond to each inquiry, whether from a customer, vendor or co-worker in a timely, courteous and professional manner.
Stay abreast of information security issues and regulatory changes affecting transportation at the state and national level.
Perform special projects and other duties as assigned.
Bachelor’s degree in related technical or engineering field or supplemental professional experience. Relevant experience can be substituted for degree.
7+ years’ experience in an IT environment, with experience leading information assurance and security architecture teams, and managing and providing technical leadership for complex enterprise security projects.
Deep understanding of vulnerability assessment and validation processes.
Ability to analyze and determine the applicability of data, to draw conclusions and make appropriate recommendations.
Ability to assemble items of information in accordance with established procedures.
Ability to determine proper format and procedure for assembling items of information.
Additional IT experience as a programmer, system administrator or network engineer preferred.
Demonstrated ability to perform a risk-based approach to securing applications, databases, or infrastructure.
Demonstrated process orientation – the ability to build repeatable and reusable processes.
Excellent verbal and written communication skills.
Knowledge of the principles, practices and techniques of supervision.
Knowledge of the laws, rules, regulations, policies, procedures, specifications, standards and guidelines governing assigned unit activities.
Knowledge of SIEM technology (QRadar preferred).
Knowledge of NAC technology (Forescout preferred).
Knowledge of or experience with security architecture framework.
Knowledge on threat landscape, security threat and vulnerability management, as well as security monitoring and analytics.
Knowledge in compliance frameworks and requirements such as PCI, HIPAA, SOX, etc.
License and/or Certification Requirements:
GSLC, CRISC, SSCP, CISSP, CISSP-ISSAP, CISSP-ISSEP, CEH, CompTIA Security + or equivalent certification preferred.
POST-OFFER BACKGROUND CHECK IS REQUIRED. An essential function of this job is physical attendance. Digital Prospectors is an Equal Opportunity Employer which includes providing equal employment opportunity for all protected classes including veterans and individuals with disabilities.
Make this your next career move as one of our many long-term contractors or employees!
ABOUT DIGITAL PROSPECTORS:
Founded in 1999, Digital Prospectors is an award-winning recruiting and consulting firm that specializes in placing contract, contract-to-hire and direct hire engineers into rewarding opportunities with our impressive and ever-growing client base. We believe that all people should love their jobs.
Come see why Digital Prospectors has been voted “ Best Staffing Firm to Temp For ” by Staffing Industry Analysts, " Best of Staffing " for candidate satisfaction by Inavero / CareerBuilder.com, " Top Temporary Placement Firm " by Boston Business Journal, " Best Company To Work For " by Business NH magazine, " Excellence in IT and Engineering Staffing ” by TechServe Alliance, " Top IT Services Company " by Inc. Magazine, " Most Reliable Staffing Agency " in Forbes Magazine and " Top Ranked Staffing Firm " by Staffing Industry Analysts.