Product Cybersecurity Application Architect Cloud Systems (Hybrid work)
Title:
Product Cybersecurity Application Architect, Cloud Systems (Hybrid work) Location:
Pittsburg, PA - Hybrid & Relocation Available Duration:
FTE / Permanent w/great benefits
Summary:
You will be responsible for driving divisions application security transformation into the Cloud platforms.
You will work with divisions to develop secure applications and software running on the cloud.
You will help with secure design decisions, driving DevSecOps framework and governance and help guide other security engineers in this area.
You will interface and lead in-depth technical security architecture discussion with Developers, Enterprise Security Architects, solution architects and potential external customers The company creates an environment where creativity, invention and discovery become reality, each and every day.
It's where bold, bright professionals like you can reach your full potential and where you can help us reach ours.
Responsibilities:
- Define Threat modeling framework and risk analysis of cloud applications and back-end components and Perform Threat Modeling on complex Cloud application security Identify and recommend compensating controls to reduce risk of specific vulnerabilities - Act as subject matter expert regarding cloud security, DevSecOps and associated tools; providing guidance and recommendations to team members and senior leadership.
- Be defining, deploying and maintaining cloud application security standards and cloud security testing standards for company products - Assist in driving the strategic direction of the DevSecOps Program framework through partnerships with engineering, operations, IT and the business - Assist in defining KPI's for the Cloud Application Security and advance the Cloud Application Security Program maturity and DevSecOps program efficiencies.
- Participate in the evaluation and selection of vendors, security tools, and risk reporting systems.
- Help build the DevSecOps capabilities across the company through Training and development of new course content - Create thorough documentation of solutions and best practices, developing knowledge base for use by the team members - Research industry trends and new technologies; implementing new procedures as needed to improve cloud security infrastructure - Understand security, risk and compliance frameworks, disaster recovery, high availability architectures, hardware, operating systems, and networking connectivity - Drive large-scale systems integration involving on-premises technology and public cloud platforms - Ability to lead and manage diverse areas and large, complex projects.
- Ability to influence and work with various technical leads in different organizations.
- Ability to interface directly with executives and other senior leaders of different business units.
- Excellent interpersonal and communication skills including the ability to explain technical concepts and present to business unit leaders and customers.
- Ability to foster collaboration across global development teams.
- Strong problem solving and reasoning ability, exhibiting technical innovation and creative solution Required Skills:
- Bachelor's in Computer science, Cybersecurity, or comparable degree from an accredited institution.
- Five or more years hands-on experience in cloud security application is required.
- Four or more years of experience in leading and deploying DevSecOps in Cloud applications - Demonstrated knowledge and practical application experience, including secure SDLC practices, security and privacy by design architectures, threat modeling, and secure by default configurations, supply chain security and security hardening.
- Must be able to work in the United States without corporate sponsorship now and within the future.
- Relocation offered for those currently residing in the United States.
Preferred Skills:
- Experience handling diverse IT / Cloud environments (Azure, AWS, GCP, etc.
) within a Multi-national large-scale Enterprise.
- Technical Certifications related to Cloud Security (e.
g.
, Azure, Amazon Web Services, Google, security certifications) like CCSP, OSCP, GPCS, GCPN, GCSA, - Experience implementing compliance frameworks such as CIS Benchmarks, CSA Cloud Controls Matrix(CCM 4.
0) and NIST CSF - Experience in designing a Zero Trust strategy and architecture - Experience in developing & deploying Governance Risk Compliance (GRC) technical strategies and security operations strategies The following benefits are offered for this position:
medical, dental, & vision insurance, short-term disability, life and AD&D insurance, and a 401(k) retirement plan.
Everest Consultants is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, disability, or any other characteristic protected by applicable local, state, or federal civil rights laws.
Recommended Skills Amazon Web Services Application Security Architecture Benchmarking Certified Case Manager Cisco Certified Security Professional Estimated Salary: $20 to $28 per hour based on qualifications.
Product Cybersecurity Application Architect, Cloud Systems (Hybrid work) Location:
Pittsburg, PA - Hybrid & Relocation Available Duration:
FTE / Permanent w/great benefits
Summary:
You will be responsible for driving divisions application security transformation into the Cloud platforms.
You will work with divisions to develop secure applications and software running on the cloud.
You will help with secure design decisions, driving DevSecOps framework and governance and help guide other security engineers in this area.
You will interface and lead in-depth technical security architecture discussion with Developers, Enterprise Security Architects, solution architects and potential external customers The company creates an environment where creativity, invention and discovery become reality, each and every day.
It's where bold, bright professionals like you can reach your full potential and where you can help us reach ours.
Responsibilities:
- Define Threat modeling framework and risk analysis of cloud applications and back-end components and Perform Threat Modeling on complex Cloud application security Identify and recommend compensating controls to reduce risk of specific vulnerabilities - Act as subject matter expert regarding cloud security, DevSecOps and associated tools; providing guidance and recommendations to team members and senior leadership.
- Be defining, deploying and maintaining cloud application security standards and cloud security testing standards for company products - Assist in driving the strategic direction of the DevSecOps Program framework through partnerships with engineering, operations, IT and the business - Assist in defining KPI's for the Cloud Application Security and advance the Cloud Application Security Program maturity and DevSecOps program efficiencies.
- Participate in the evaluation and selection of vendors, security tools, and risk reporting systems.
- Help build the DevSecOps capabilities across the company through Training and development of new course content - Create thorough documentation of solutions and best practices, developing knowledge base for use by the team members - Research industry trends and new technologies; implementing new procedures as needed to improve cloud security infrastructure - Understand security, risk and compliance frameworks, disaster recovery, high availability architectures, hardware, operating systems, and networking connectivity - Drive large-scale systems integration involving on-premises technology and public cloud platforms - Ability to lead and manage diverse areas and large, complex projects.
- Ability to influence and work with various technical leads in different organizations.
- Ability to interface directly with executives and other senior leaders of different business units.
- Excellent interpersonal and communication skills including the ability to explain technical concepts and present to business unit leaders and customers.
- Ability to foster collaboration across global development teams.
- Strong problem solving and reasoning ability, exhibiting technical innovation and creative solution Required Skills:
- Bachelor's in Computer science, Cybersecurity, or comparable degree from an accredited institution.
- Five or more years hands-on experience in cloud security application is required.
- Four or more years of experience in leading and deploying DevSecOps in Cloud applications - Demonstrated knowledge and practical application experience, including secure SDLC practices, security and privacy by design architectures, threat modeling, and secure by default configurations, supply chain security and security hardening.
- Must be able to work in the United States without corporate sponsorship now and within the future.
- Relocation offered for those currently residing in the United States.
Preferred Skills:
- Experience handling diverse IT / Cloud environments (Azure, AWS, GCP, etc.
) within a Multi-national large-scale Enterprise.
- Technical Certifications related to Cloud Security (e.
g.
, Azure, Amazon Web Services, Google, security certifications) like CCSP, OSCP, GPCS, GCPN, GCSA, - Experience implementing compliance frameworks such as CIS Benchmarks, CSA Cloud Controls Matrix(CCM 4.
0) and NIST CSF - Experience in designing a Zero Trust strategy and architecture - Experience in developing & deploying Governance Risk Compliance (GRC) technical strategies and security operations strategies The following benefits are offered for this position:
medical, dental, & vision insurance, short-term disability, life and AD&D insurance, and a 401(k) retirement plan.
Everest Consultants is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, disability, or any other characteristic protected by applicable local, state, or federal civil rights laws.
Recommended Skills Amazon Web Services Application Security Architecture Benchmarking Certified Case Manager Cisco Certified Security Professional Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
