CareerAIM-Free
CareerAIM-Free

Job Search




Security Architect | CareerAIM

Security Architect
Date Posted
Saturday, January 6, 2018
Location
Markham, ON
Source
Industries
Oil & Gas, Exploration, Mining, Energy
Details

Role: Security Architect

Status: Regular, Full Time

Department: Information Technology

Reports: Director, IT Architecture & Security

Location: Birchmount (Markham)


Responsibilities:

  • Identify, design, and document network and security initiatives in support of Enterprise Network, Wi-Fi, Unified Communications, and Data Centre & Cloud solutions
  • Act as technical interface between customers, partners, and internal networking and security resources
  • Conduct strategic reviews of customer’s existing network and security investments
  • Work with project teams to scope project opportunities
  • Perform security assessments of new projects and technology implementations.
  • Review and approve changes to the IT environment that are of security or compliance consequence.
  • Develop and establish new policy and review existing policy.
  • Assess internal and external landscape for new threats to information security.
  • Report on security metrics and assessment results.
  • Research new technology as required to better protect systems and data.
  • Provide guidance and direction in new architectural system designs and implement security frameworks.
  • Excellent knowledge of Palo Alto/Checkpoint/Watchguard firewalls, IDS/IPS, malware, vulnerability management, SIEM (SOC)

Qualifications:

  • 7 to 10 years’ experience in a technology role with exposure to varying IT solutions and technologies
  • 5+ years’ experience in a security architecture role within a complex environment
  • Experience in designing, deploying and maintaining complex network and security architectures
  • Experience in IT risk assessment, mitigation and auditing
  • Expertise in LAN, WAN, and Wireless technologies and architectures
  • Experienced in Access control and firewalls/Unified Threat Management (UTM) devices, preferably IBM Qradar, LogRhythm, McAfee ESM etc.
  • Technical Expertise in DMZ Architecture, Intrusion Detection and Prevention (IDS/IPS) systems, Identity and Access systems, Remote Network Access (VPN), Distributed Denial of Service Prevention (DDoS), Anti-Malware/Virus (AV), Endpoint Protection/Encryption, Web Application Firewall Protection (WAF), Email and Messaging Security (Hygiene), Web Content Filtering
  • Security, and Networking, with the last 5 years concentrated in security engineering and architecture or security engineering consulting
  • Degree in Computer Science, IT or Electrical Engineering.
  • Industry recognized certifications in network technologies (such as CCDE, CCDP, CCDA, PCNSE7/8, CCSA GAiA, CCNP, CCIE)
  • Industry recognized certifications in IT security (such as CISSP, CISA, CISM, CISSP-ISSAP, GIAC)
  • Certification in ITIL and TOGAF preferred
  • Experience with building, maintaining, reviewing all configs/settings/policies on chosen technologies
  • Experience with analyzing physical and logical network design documentation
  • Experience with analyzing security architecture from the network to desktop with security controls
  • Ability to design solutions for addressing gaps in an existing security architecture
  • Expert level knowledge of Transmission Control Protocol/Internet Protocol (TCP/IP), DNS, and security protocols combined with well-developed communication and presentation skills
  • Technical leadership; ability to act a SME with sound judgment & decision making
  • Ability to work independently and as part of a cross-functional team
  • Highly collaborative and Customer-centric focused