|
Security Architect
Closing Date: October 31, 2010
| Company: | Information Systems of Florida
Tallahassee, FL |
| Job Location: |
Jacksonville - Duval County
|
| Employment Type: | Other |
| Department: | IT |
| Salary Range: | open |
Description: | | The Security Architect is tasked with representing risk controls and diligence practices as a project participant in business line technology initiatives. The security architect is responsible for reviewing the overall architecture and implementation of technology solutions to ensure that they adhere to Information Risk Management (RCP/DR, Records Management, Information Security, and Compliance) standards. Where the standards cannot be met, we work with the business line technology teams to develop other mitigation controls, file exemptions to policy, and summarize the overall risk posture of the project to allow the business line to proceed and fully understand and accept the risk. | Duties: | Combine knowledge of service-oriented architecture concepts with experience in security engineering, including security testing and evaluation, requirements, logical and physical architecture design
Apply oral and written communication skills to interface with clients and IT staff. Co-lead the development and integration of the enterprise security services for large-scale system, network, or infrastructure solutions
Apply expertise in developing conceptual, logical, and technical security architecture artifacts, knowledge of a variety of hardware and software security capabilities and features, and an ability to resolve security and non-security requirement conflicts
Collaborate with team leads, clients, engineers, and developers to appropriately translate functional needs into technical security requirements
Participate in the technical solution design efforts to ensure that security requirements are addressed
Work with team to help the work streams implement appropriate technical security controls
| Qualifications: | 4 - 5 years of hands-on technical security control architecture, design, information security solution engineering, security technology implementation, and security service delivery role
Highly organized, strong interpersonal skills, project management experience
Database; Network Applications; Unix; Windows 2000; Windows 2003; Wireless; SQL; Security; Data Mapping; Data Security Analyst; Networking Administrator, Project experience
Expertise in analyzing a wide spectrum of IT solutions, ascertaining their technical security control (authentication, authorization, access control, audit cryptography) needs, and making practical recommendations to address them
Experience in hands-on technical security control architecture and design, information security solution engineering, security technology implementation, and security service delivery role, including in-depth hands-on experience in complex enterprise architectures lock downs
Experience with inner workings and security aspects of a variety of application servers, web servers, media/content servers, messaging servers, database servers, integration servers, etc.
Hands-on experience in as many of the following technologies as possible:
Application frameworks and their built-in security services & API*s: J2EE, Web Sphere, COM+, .NET, or others.
General application security API*s and protocols: PI, TNG Unicenter, Symantecs Netbackup; HP Autopath for SAN; Diskeeper; HP Proliant Essentials; HP Proliant Manger; Oracle Enterprise Manager; Glance Plus; Exceed Messaging, or others.
Imbedded Operating Systems security controls including Windows XP, Windows 2003, AIX, Solaris, Z/OS, AS/400, and others
Network infrastructure and security functionality: Switches, routers, firewalls, IDS/IPS, VPNs
Educational Requirements:
MIS/CS/IT Bachelors required
|
|
|
|
