SOC Engineer (Sentinel SME) Akkodis are currently working in partnership with a leading service provider to recruit an experienced SOC Engineer with expertise of Microsoft Sentinel to join their growing security team during an exciting period of change. Please note this is a fully remote role and you must be eligible to gain security clearance (do not need to hold currently). The Role As a SOC Engineer you will be responsible for handing security incidents received/escalated for the Junior Analysts in the team. You will aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. You will also have the opportunity to support the initial implementation of new security related Microsoft technologies, including Microsoft Sentinel, MDE, MDI and Defender for Cloud. The Responsibilities Oversee completion of day-to-day checklist(s), including log review, management report scheduling & running, alert analysis, and escalation follow up Remain current on cyber security trends and intelligence (open source and commercial) in order to guide the security analysis & identification capabilities of the CSOC team Provide oversight, guidance and mentoring to L2 & L3 analysts, and fulfil SOC Manager responsibilities in the absence of the SOC Manager Manage a number of analysts as part of a virtual team of L1 and L2 analysts, including objectives setting, performance management/reviews, training & development, and BAU activities including shift cover etc. Perform advanced event and incident analysis, including baseline establishment and trend analysis. Support on-call arrangements as part of a Rota, to support L1 Analysts working out of hours Support Major Incident Response activity, from a Protective Monitoring perspective, including supporting teams in identification, containment, and remediation of security related threat. Provide timely advice and guidance on the response action plans for events and incidents based on incident type and severity. Identify, create and implement improvements to procedures and processes, with the SOC Manager's approval. Identify opportunities for SOC and client SIEM platform configuration improvements, use case development, monitoring rule creation, tuning & optimisation Assist in architectural design to facilitate the onboarding of new information systems, including the assessment, parsing, onboarding of log sources, and use case and rule development. The Requirements Senior Cyber Security and security operations experience Experience in managing Microsoft Sentinel, including Lighthouse Experience of onboarding, tuning, reporting and configuring SIEM solutions Experience of threat intelligence Leadership and mentoring experience and skills Understanding of low-level concepts including operating systems and networking Commercial experience in Penetration Testing and/or Security Monitoring Understanding of networking and infrastructure design Active or ability to obtain SC clearance Knowledge/experience of DevOps would be hugely beneficial If you are looking for an exciting new challenge to join a leading SOC team please apply now. Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
26/07/2024
Full time
SOC Engineer (Sentinel SME) Akkodis are currently working in partnership with a leading service provider to recruit an experienced SOC Engineer with expertise of Microsoft Sentinel to join their growing security team during an exciting period of change. Please note this is a fully remote role and you must be eligible to gain security clearance (do not need to hold currently). The Role As a SOC Engineer you will be responsible for handing security incidents received/escalated for the Junior Analysts in the team. You will aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. You will also have the opportunity to support the initial implementation of new security related Microsoft technologies, including Microsoft Sentinel, MDE, MDI and Defender for Cloud. The Responsibilities Oversee completion of day-to-day checklist(s), including log review, management report scheduling & running, alert analysis, and escalation follow up Remain current on cyber security trends and intelligence (open source and commercial) in order to guide the security analysis & identification capabilities of the CSOC team Provide oversight, guidance and mentoring to L2 & L3 analysts, and fulfil SOC Manager responsibilities in the absence of the SOC Manager Manage a number of analysts as part of a virtual team of L1 and L2 analysts, including objectives setting, performance management/reviews, training & development, and BAU activities including shift cover etc. Perform advanced event and incident analysis, including baseline establishment and trend analysis. Support on-call arrangements as part of a Rota, to support L1 Analysts working out of hours Support Major Incident Response activity, from a Protective Monitoring perspective, including supporting teams in identification, containment, and remediation of security related threat. Provide timely advice and guidance on the response action plans for events and incidents based on incident type and severity. Identify, create and implement improvements to procedures and processes, with the SOC Manager's approval. Identify opportunities for SOC and client SIEM platform configuration improvements, use case development, monitoring rule creation, tuning & optimisation Assist in architectural design to facilitate the onboarding of new information systems, including the assessment, parsing, onboarding of log sources, and use case and rule development. The Requirements Senior Cyber Security and security operations experience Experience in managing Microsoft Sentinel, including Lighthouse Experience of onboarding, tuning, reporting and configuring SIEM solutions Experience of threat intelligence Leadership and mentoring experience and skills Understanding of low-level concepts including operating systems and networking Commercial experience in Penetration Testing and/or Security Monitoring Understanding of networking and infrastructure design Active or ability to obtain SC clearance Knowledge/experience of DevOps would be hugely beneficial If you are looking for an exciting new challenge to join a leading SOC team please apply now. Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
SOC Engineer (Sentinel SME) Akkodis are currently working in partnership with a leading service provider to recruit an experienced SOC Engineer with expertise of Microsoft Sentinel to join their growing security team during an exciting period of change. Please note this is a fully remote role and you must be eligible to gain security clearance (do not need to hold currently). The Role As a SOC Engineer you will be responsible for handing security incidents received/escalated for the Junior Analysts in the team. You will aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. You will also have the opportunity to support the initial implementation of new security related Microsoft technologies, including Microsoft Sentinel, MDE, MDI and Defender for Cloud. The Responsibilities Oversee completion of day-to-day checklist(s), including log review, management report scheduling & running, alert analysis, and escalation follow up Remain current on cyber security trends and intelligence (open source and commercial) in order to guide the security analysis & identification capabilities of the CSOC team Provide oversight, guidance and mentoring to L2 & L3 analysts, and fulfil SOC Manager responsibilities in the absence of the SOC Manager Manage a number of analysts as part of a virtual team of L1 and L2 analysts, including objectives setting, performance management/reviews, training & development, and BAU activities including shift cover etc. Perform advanced event and incident analysis, including baseline establishment and trend analysis. Support on-call arrangements as part of a Rota, to support L1 Analysts working out of hours Support Major Incident Response activity, from a Protective Monitoring perspective, including supporting teams in identification, containment, and remediation of security related threat. Provide timely advice and guidance on the response action plans for events and incidents based on incident type and severity. Identify, create and implement improvements to procedures and processes, with the SOC Manager's approval. Identify opportunities for SOC and client SIEM platform configuration improvements, use case development, monitoring rule creation, tuning & optimisation Assist in architectural design to facilitate the onboarding of new information systems, including the assessment, parsing, onboarding of log sources, and use case and rule development. The Requirements Senior Cyber Security and security operations experience Experience in managing Microsoft Sentinel, including Lighthouse Experience of onboarding, tuning, reporting and configuring SIEM solutions Experience of threat intelligence Leadership and mentoring experience and skills Understanding of low-level concepts including operating systems and networking Commercial experience in Penetration Testing and/or Security Monitoring Understanding of networking and infrastructure design Active or ability to obtain SC clearance Knowledge/experience of DevOps would be hugely beneficial If you are looking for an exciting new challenge to join a leading SOC team please apply now. Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
26/07/2024
Full time
SOC Engineer (Sentinel SME) Akkodis are currently working in partnership with a leading service provider to recruit an experienced SOC Engineer with expertise of Microsoft Sentinel to join their growing security team during an exciting period of change. Please note this is a fully remote role and you must be eligible to gain security clearance (do not need to hold currently). The Role As a SOC Engineer you will be responsible for handing security incidents received/escalated for the Junior Analysts in the team. You will aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. You will also have the opportunity to support the initial implementation of new security related Microsoft technologies, including Microsoft Sentinel, MDE, MDI and Defender for Cloud. The Responsibilities Oversee completion of day-to-day checklist(s), including log review, management report scheduling & running, alert analysis, and escalation follow up Remain current on cyber security trends and intelligence (open source and commercial) in order to guide the security analysis & identification capabilities of the CSOC team Provide oversight, guidance and mentoring to L2 & L3 analysts, and fulfil SOC Manager responsibilities in the absence of the SOC Manager Manage a number of analysts as part of a virtual team of L1 and L2 analysts, including objectives setting, performance management/reviews, training & development, and BAU activities including shift cover etc. Perform advanced event and incident analysis, including baseline establishment and trend analysis. Support on-call arrangements as part of a Rota, to support L1 Analysts working out of hours Support Major Incident Response activity, from a Protective Monitoring perspective, including supporting teams in identification, containment, and remediation of security related threat. Provide timely advice and guidance on the response action plans for events and incidents based on incident type and severity. Identify, create and implement improvements to procedures and processes, with the SOC Manager's approval. Identify opportunities for SOC and client SIEM platform configuration improvements, use case development, monitoring rule creation, tuning & optimisation Assist in architectural design to facilitate the onboarding of new information systems, including the assessment, parsing, onboarding of log sources, and use case and rule development. The Requirements Senior Cyber Security and security operations experience Experience in managing Microsoft Sentinel, including Lighthouse Experience of onboarding, tuning, reporting and configuring SIEM solutions Experience of threat intelligence Leadership and mentoring experience and skills Understanding of low-level concepts including operating systems and networking Commercial experience in Penetration Testing and/or Security Monitoring Understanding of networking and infrastructure design Active or ability to obtain SC clearance Knowledge/experience of DevOps would be hugely beneficial If you are looking for an exciting new challenge to join a leading SOC team please apply now. Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
*Position is Bonus eligible* Prestigious Financial Company is currently seeking a Senior PAM PKI Security Engineer. Candidate will be responsible for applying skills and knowledge to perform functions for Privileged Access and Secrets Management solutions, Hardware security modules (HSMs), and encryption practices. You must ensure to take a security first approach when deploying or integrating Secrets Management, PKI, Sessions Management, or authentication integrations under the team's purview using agile methodology. Responsibilities: Design, document, deploy, and support PAM solutions supporting vaulting, session management, hardcoded credential removal, and support integrations with PAM solution for secure secrets management supporting app-to-app communication. Design, document, develop, and support PAM integrations to support automated password rotations and establishing secure sessions through jump host solution. Design, document, implement, and maintain our Certificate Authority PKI infrastructure. Ensure certificates are correctly issued, renewed, and revoked as necessary. Implement and manage certificate templates and revocation configurations. Implement, configure, and maintain HSMs to support PKI operations. Work with vendors to ensure systems are patched and up to date. Address and troubleshoot issues related to PAM, PKI, and HSM solutions. Implement and manage encryption tools and software. Ensure team solutions are monitored following best practice. Proficient in using Scripting and automation skills to convert manual maintenance and audit functions into orchestrated automation. Track and execute work following agile best practices with self-motivation to bring a task from ideation to implementation. Ability to operate in a highly regulated complex operational environment and collaborate with internal SMEs required to maintain and mature the PAM program. Document, review, and update run books supporting Secrets and Privileged Access Management solutions. Develop and maintain encryption standards, practices, and solutions. Develop and maintain documentation related to PAM policies, procedures, and configurations. Qualifications: The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. Experience with enterprise PAM tools and technologies such as various CyberArk and HashiVault components and underlying infrastructure supporting those technologies. Experience with various integration techniques for Secrets Management and Privileged Management to target systems such as databases, directories, and applications. Experience with Microsoft certificate authority PKI infrastructure. Experience with hardware security modules (HSMs). Experience with Python, Ansible, Terraform, and YAML packages. Requires in-depth knowledge of PAM and Secrets Management best practices. Requires in-depth knowledge of encryption algorithms, protocols, and best practices. Working knowledge of system monitoring techniques and tooling. Working knowledge of the cloud ecosystem and CI/CD deployments with Terraform, Ansible, and Jenkins pipelines. 5+ years of experience with PAM tools and technologies. 3+ years of experience in PKI infrastructure including Microsoft Certificate Authority. Bachelor's degree in computer science, Information Technology, or related field. Technical Skills: Hands on deployment, management, and troubleshooting experience with HSMs, MS PKI, HashiCorp Vault, and all CyberArk components (AIM, PSM/P, PVWA, CPM, VAULT). Hands on experience leveraging APIs. Knowledge of cryptographic operations, secure key storage, and key life cycle management with HSM and encryption tools. Knowledge of end-to-end encryption, data at rest, and data in transit protection methodologies. Ability to interpret logs and events related to PKI, HSMs, encryption, and PAM activities. 5+ years of experience with security engineering activities and testing. 5+ years of experience with privileged access management platforms. 3+ years of experience with HSM, PKI, Microsoft Certificate Authority. 2+ years of experience with DevOps/DevSecOps (eg, GitOps, Version Control, RESTful APIs) 2+ years of experience with cloud architecture and deployments. Certificates or Licenses: CyberArk Defender, Sentry, or Guardian HashiCorp Certified: Terraform Associate HashiCorp Certified: Vault Associate Certification Information Systems Security Professional (CISSP) AWS Certified Security Specialty CompTIA Security+ Microsoft Certified: Security Engineer Associate
25/07/2024
Full time
*Position is Bonus eligible* Prestigious Financial Company is currently seeking a Senior PAM PKI Security Engineer. Candidate will be responsible for applying skills and knowledge to perform functions for Privileged Access and Secrets Management solutions, Hardware security modules (HSMs), and encryption practices. You must ensure to take a security first approach when deploying or integrating Secrets Management, PKI, Sessions Management, or authentication integrations under the team's purview using agile methodology. Responsibilities: Design, document, deploy, and support PAM solutions supporting vaulting, session management, hardcoded credential removal, and support integrations with PAM solution for secure secrets management supporting app-to-app communication. Design, document, develop, and support PAM integrations to support automated password rotations and establishing secure sessions through jump host solution. Design, document, implement, and maintain our Certificate Authority PKI infrastructure. Ensure certificates are correctly issued, renewed, and revoked as necessary. Implement and manage certificate templates and revocation configurations. Implement, configure, and maintain HSMs to support PKI operations. Work with vendors to ensure systems are patched and up to date. Address and troubleshoot issues related to PAM, PKI, and HSM solutions. Implement and manage encryption tools and software. Ensure team solutions are monitored following best practice. Proficient in using Scripting and automation skills to convert manual maintenance and audit functions into orchestrated automation. Track and execute work following agile best practices with self-motivation to bring a task from ideation to implementation. Ability to operate in a highly regulated complex operational environment and collaborate with internal SMEs required to maintain and mature the PAM program. Document, review, and update run books supporting Secrets and Privileged Access Management solutions. Develop and maintain encryption standards, practices, and solutions. Develop and maintain documentation related to PAM policies, procedures, and configurations. Qualifications: The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. Experience with enterprise PAM tools and technologies such as various CyberArk and HashiVault components and underlying infrastructure supporting those technologies. Experience with various integration techniques for Secrets Management and Privileged Management to target systems such as databases, directories, and applications. Experience with Microsoft certificate authority PKI infrastructure. Experience with hardware security modules (HSMs). Experience with Python, Ansible, Terraform, and YAML packages. Requires in-depth knowledge of PAM and Secrets Management best practices. Requires in-depth knowledge of encryption algorithms, protocols, and best practices. Working knowledge of system monitoring techniques and tooling. Working knowledge of the cloud ecosystem and CI/CD deployments with Terraform, Ansible, and Jenkins pipelines. 5+ years of experience with PAM tools and technologies. 3+ years of experience in PKI infrastructure including Microsoft Certificate Authority. Bachelor's degree in computer science, Information Technology, or related field. Technical Skills: Hands on deployment, management, and troubleshooting experience with HSMs, MS PKI, HashiCorp Vault, and all CyberArk components (AIM, PSM/P, PVWA, CPM, VAULT). Hands on experience leveraging APIs. Knowledge of cryptographic operations, secure key storage, and key life cycle management with HSM and encryption tools. Knowledge of end-to-end encryption, data at rest, and data in transit protection methodologies. Ability to interpret logs and events related to PKI, HSMs, encryption, and PAM activities. 5+ years of experience with security engineering activities and testing. 5+ years of experience with privileged access management platforms. 3+ years of experience with HSM, PKI, Microsoft Certificate Authority. 2+ years of experience with DevOps/DevSecOps (eg, GitOps, Version Control, RESTful APIs) 2+ years of experience with cloud architecture and deployments. Certificates or Licenses: CyberArk Defender, Sentry, or Guardian HashiCorp Certified: Terraform Associate HashiCorp Certified: Vault Associate Certification Information Systems Security Professional (CISSP) AWS Certified Security Specialty CompTIA Security+ Microsoft Certified: Security Engineer Associate
Request Technology - Craig Johnson
Chicago, Illinois
*Position is Bonus eligible* Prestigious Financial Company is currently seeking a Senior PAM PKI Security Engineer. Candidate will be responsible for applying skills and knowledge to perform functions for Privileged Access and Secrets Management solutions, Hardware security modules (HSMs), and encryption practices. You must ensure to take a security first approach when deploying or integrating Secrets Management, PKI, Sessions Management, or authentication integrations under the team's purview using agile methodology. Responsibilities: Design, document, deploy, and support PAM solutions supporting vaulting, session management, hardcoded credential removal, and support integrations with PAM solution for secure secrets management supporting app-to-app communication. Design, document, develop, and support PAM integrations to support automated password rotations and establishing secure sessions through jump host solution. Design, document, implement, and maintain our Certificate Authority PKI infrastructure. Ensure certificates are correctly issued, renewed, and revoked as necessary. Implement and manage certificate templates and revocation configurations. Implement, configure, and maintain HSMs to support PKI operations. Work with vendors to ensure systems are patched and up to date. Address and troubleshoot issues related to PAM, PKI, and HSM solutions. Implement and manage encryption tools and software. Ensure team solutions are monitored following best practice. Proficient in using Scripting and automation skills to convert manual maintenance and audit functions into orchestrated automation. Track and execute work following agile best practices with self-motivation to bring a task from ideation to implementation. Ability to operate in a highly regulated complex operational environment and collaborate with internal SMEs required to maintain and mature the PAM program. Document, review, and update run books supporting Secrets and Privileged Access Management solutions. Develop and maintain encryption standards, practices, and solutions. Develop and maintain documentation related to PAM policies, procedures, and configurations. Qualifications: The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. Experience with enterprise PAM tools and technologies such as various CyberArk and HashiVault components and underlying infrastructure supporting those technologies. Experience with various integration techniques for Secrets Management and Privileged Management to target systems such as databases, directories, and applications. Experience with Microsoft certificate authority PKI infrastructure. Experience with hardware security modules (HSMs). Experience with Python, Ansible, Terraform, and YAML packages. Requires in-depth knowledge of PAM and Secrets Management best practices. Requires in-depth knowledge of encryption algorithms, protocols, and best practices. Working knowledge of system monitoring techniques and tooling. Working knowledge of the cloud ecosystem and CI/CD deployments with Terraform, Ansible, and Jenkins pipelines. 5+ years of experience with PAM tools and technologies. 3+ years of experience in PKI infrastructure including Microsoft Certificate Authority. Bachelor's degree in computer science, Information Technology, or related field. Technical Skills: Hands on deployment, management, and troubleshooting experience with HSMs, MS PKI, HashiCorp Vault, and all CyberArk components (AIM, PSM/P, PVWA, CPM, VAULT). Hands on experience leveraging APIs. Knowledge of cryptographic operations, secure key storage, and key life cycle management with HSM and encryption tools. Knowledge of end-to-end encryption, data at rest, and data in transit protection methodologies. Ability to interpret logs and events related to PKI, HSMs, encryption, and PAM activities. 5+ years of experience with security engineering activities and testing. 5+ years of experience with privileged access management platforms. 3+ years of experience with HSM, PKI, Microsoft Certificate Authority. 2+ years of experience with DevOps/DevSecOps (eg, GitOps, Version Control, RESTful APIs) 2+ years of experience with cloud architecture and deployments. Certificates or Licenses: CyberArk Defender, Sentry, or Guardian HashiCorp Certified: Terraform Associate HashiCorp Certified: Vault Associate Certification Information Systems Security Professional (CISSP) AWS Certified Security Specialty CompTIA Security+ Microsoft Certified: Security Engineer Associate
25/07/2024
Full time
*Position is Bonus eligible* Prestigious Financial Company is currently seeking a Senior PAM PKI Security Engineer. Candidate will be responsible for applying skills and knowledge to perform functions for Privileged Access and Secrets Management solutions, Hardware security modules (HSMs), and encryption practices. You must ensure to take a security first approach when deploying or integrating Secrets Management, PKI, Sessions Management, or authentication integrations under the team's purview using agile methodology. Responsibilities: Design, document, deploy, and support PAM solutions supporting vaulting, session management, hardcoded credential removal, and support integrations with PAM solution for secure secrets management supporting app-to-app communication. Design, document, develop, and support PAM integrations to support automated password rotations and establishing secure sessions through jump host solution. Design, document, implement, and maintain our Certificate Authority PKI infrastructure. Ensure certificates are correctly issued, renewed, and revoked as necessary. Implement and manage certificate templates and revocation configurations. Implement, configure, and maintain HSMs to support PKI operations. Work with vendors to ensure systems are patched and up to date. Address and troubleshoot issues related to PAM, PKI, and HSM solutions. Implement and manage encryption tools and software. Ensure team solutions are monitored following best practice. Proficient in using Scripting and automation skills to convert manual maintenance and audit functions into orchestrated automation. Track and execute work following agile best practices with self-motivation to bring a task from ideation to implementation. Ability to operate in a highly regulated complex operational environment and collaborate with internal SMEs required to maintain and mature the PAM program. Document, review, and update run books supporting Secrets and Privileged Access Management solutions. Develop and maintain encryption standards, practices, and solutions. Develop and maintain documentation related to PAM policies, procedures, and configurations. Qualifications: The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. Experience with enterprise PAM tools and technologies such as various CyberArk and HashiVault components and underlying infrastructure supporting those technologies. Experience with various integration techniques for Secrets Management and Privileged Management to target systems such as databases, directories, and applications. Experience with Microsoft certificate authority PKI infrastructure. Experience with hardware security modules (HSMs). Experience with Python, Ansible, Terraform, and YAML packages. Requires in-depth knowledge of PAM and Secrets Management best practices. Requires in-depth knowledge of encryption algorithms, protocols, and best practices. Working knowledge of system monitoring techniques and tooling. Working knowledge of the cloud ecosystem and CI/CD deployments with Terraform, Ansible, and Jenkins pipelines. 5+ years of experience with PAM tools and technologies. 3+ years of experience in PKI infrastructure including Microsoft Certificate Authority. Bachelor's degree in computer science, Information Technology, or related field. Technical Skills: Hands on deployment, management, and troubleshooting experience with HSMs, MS PKI, HashiCorp Vault, and all CyberArk components (AIM, PSM/P, PVWA, CPM, VAULT). Hands on experience leveraging APIs. Knowledge of cryptographic operations, secure key storage, and key life cycle management with HSM and encryption tools. Knowledge of end-to-end encryption, data at rest, and data in transit protection methodologies. Ability to interpret logs and events related to PKI, HSMs, encryption, and PAM activities. 5+ years of experience with security engineering activities and testing. 5+ years of experience with privileged access management platforms. 3+ years of experience with HSM, PKI, Microsoft Certificate Authority. 2+ years of experience with DevOps/DevSecOps (eg, GitOps, Version Control, RESTful APIs) 2+ years of experience with cloud architecture and deployments. Certificates or Licenses: CyberArk Defender, Sentry, or Guardian HashiCorp Certified: Terraform Associate HashiCorp Certified: Vault Associate Certification Information Systems Security Professional (CISSP) AWS Certified Security Specialty CompTIA Security+ Microsoft Certified: Security Engineer Associate
Primary Skills Required: Expert level knowledge of Oracle technologies: Oracle Cloud, OCI Oracle Engineered Systems, such as Exadata, ZFS appliance, Oracle Database Appliance Enterprise level experience in following technical disciplines Network connectivity architecture Auditing and Security High availability; High availability design - Oracle MAA Disaster recovery We seek an enthusiastic and highly talented Oracle Database/OCI Architect to help design, architect and implement innovative solutions for our database platforms. An interested candidate will have extensive experience in architecting Oracle Database infrastructure, both om premise and in the cloud, designed for the future. The candidate must keep abreast of new technologies and trends with an eagerness to learn, pair and coach. The candidate will be shaping the future of Database Engineering as we transform through a Service Oriented, API first and Cloud Native approach in delivering our Database platforms as Automated Services for teams and customers. Key responsibilities Work with management, engineering and operations to design architecture concerning Oracle landscape Drive development of strategy based on analysis of company needs and industry trends Designing infrastructure target state architectures and roadmaps of achieving it Translate stakeholders' requirements into architecture definitions Create architecture documentation Prepare High level, technical and solution designs for different use cases and challenges Architecting and Designing solutions that transforms a Database Platform into a Service Continuously looking for opportunities to optimize and automate Skills and experience: Expert level knowledge of Oracle technologies: Oracle Cloud, OCI Oracle Engineered Systems, such as Exadata, ZFS appliance, Oracle Database Appliance Oracle Database Enterprise level experience in following technical disciplines Network connectivity architecture Auditing and Security High availability; High availability design - Oracle MAA Disaster recovery Knowledge of financial sector database security controls design Database security Auditing and monitoring Privileged access management Brokered Access and authentication - ie Cyberark Expert level knowledge of enterprise architecture standards Familiar with Google Cloud Platform Experience in gathering, documenting and analysing requirements Experience in creating and maintaining complex architecture documentation Outstanding communication and presentation skills Effectively communicates complex messages in a clear and concise manner Experience in solution design and techniques with ability to make design decision trade-offs Ability to self-manage a book of work and ensure clear transparency on progress with clear and timely communication of issues Capability to interact successfully in a virtual, multi-vendor and multi-cultural environment Enables experimentation and fast learning approaches to creating solutions Ability to prioritize and manage several competing demands simultaneously Ability to work autonomously, take a leap and achieve goals iteratively
24/07/2024
Primary Skills Required: Expert level knowledge of Oracle technologies: Oracle Cloud, OCI Oracle Engineered Systems, such as Exadata, ZFS appliance, Oracle Database Appliance Enterprise level experience in following technical disciplines Network connectivity architecture Auditing and Security High availability; High availability design - Oracle MAA Disaster recovery We seek an enthusiastic and highly talented Oracle Database/OCI Architect to help design, architect and implement innovative solutions for our database platforms. An interested candidate will have extensive experience in architecting Oracle Database infrastructure, both om premise and in the cloud, designed for the future. The candidate must keep abreast of new technologies and trends with an eagerness to learn, pair and coach. The candidate will be shaping the future of Database Engineering as we transform through a Service Oriented, API first and Cloud Native approach in delivering our Database platforms as Automated Services for teams and customers. Key responsibilities Work with management, engineering and operations to design architecture concerning Oracle landscape Drive development of strategy based on analysis of company needs and industry trends Designing infrastructure target state architectures and roadmaps of achieving it Translate stakeholders' requirements into architecture definitions Create architecture documentation Prepare High level, technical and solution designs for different use cases and challenges Architecting and Designing solutions that transforms a Database Platform into a Service Continuously looking for opportunities to optimize and automate Skills and experience: Expert level knowledge of Oracle technologies: Oracle Cloud, OCI Oracle Engineered Systems, such as Exadata, ZFS appliance, Oracle Database Appliance Oracle Database Enterprise level experience in following technical disciplines Network connectivity architecture Auditing and Security High availability; High availability design - Oracle MAA Disaster recovery Knowledge of financial sector database security controls design Database security Auditing and monitoring Privileged access management Brokered Access and authentication - ie Cyberark Expert level knowledge of enterprise architecture standards Familiar with Google Cloud Platform Experience in gathering, documenting and analysing requirements Experience in creating and maintaining complex architecture documentation Outstanding communication and presentation skills Effectively communicates complex messages in a clear and concise manner Experience in solution design and techniques with ability to make design decision trade-offs Ability to self-manage a book of work and ensure clear transparency on progress with clear and timely communication of issues Capability to interact successfully in a virtual, multi-vendor and multi-cultural environment Enables experimentation and fast learning approaches to creating solutions Ability to prioritize and manage several competing demands simultaneously Ability to work autonomously, take a leap and achieve goals iteratively
Request Technology - Craig Johnson
San Francisco, California
*We are unable to sponsor for this 6+ month straight contract role, no 3rd party candidates will be considered* Prestigious Enterprise Company is currently seeking a Cyber Security Infrastructure Engineer and Architect with Azure experience. Candidate will be responsible for the planning, development and implementation of enterprise information security solutions (such as authentication and authorization, public key infrastructure, data loss prevention, and security event information management) to address the current and emerging security needs of the business. This role requires the solution of complex enterprise-scale information security problems. The role will design and develop new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Responsibilities: Contributes to a team that ensures the security of enterprise data and systems by developing enterprise information security solutions. Creates and updates a view of IT assets, related attack surfaces, and threat actors to illustrate the flow of data and associated security threats. Researches, designs, and develops new enterprise technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Serves as a security expert in one or more of application development, database design, network, and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices. Analyzes business impact and exposure based on emerging security threats, vulnerabilities, and risks and contributes to the development and maintenance of information security architecture. Engages with security specialists and other functional area architects to ensure adequate enterprise security solutions are in place to sufficiently mitigate identified risks, and to meet business objectives and regulatory requirements. Serves as a cybersecurity subject matter expert, assessing the business impact of cybersecurity risks to the enterprise and identifying options and recommendations for mitigating those risks. Serves as an expert in one or more of platform, application, storage, network, virtualization, cloud and mobile security best practices. Cloud Security: Shared Responsibility model Secure services in the cloud Infrastructure security in the cloud Secure boundaries Authentication & Authorization security services in the Cloud Cloud Native VS Third party security capabilities Container Security Container security life cycle Image scanning Qualifications: Strong knowledge of network security protocols, best practices, and perimeter security tools Strong knowledge of identity and access management controls, including SAML and OAUTH/OIDC based authentication, Active Directory, and role mapping Understanding of common security control solutions for event logging, remote access, endpoint management, and mobile device management Understanding of common data protection technologies such as cryptography, tokenization, and hashing Understanding of Azure native security services and best practices Strong knowledge of threat modelling and risk assessment technologies or frameworks Preferred Skills: The candidate shall have the experience on developing secure view of architecture and secure design documents for different applications ability to lead the exercise of collecting the required data to produce the deliverables Ability to articulate the requirements in technical and non technical language Ability to defend secure design and support it with real life scenarios Ability to articulate the risk and findings in business language Explain vulnerabilities and threats Threat modelling Recent attacks Application Security Focus Areas Secure Code Development Secure SDLC Secure Agile development Testing Security requirements Writing security stories Web Application Security Owasp 10 SAST and DAST Scan API Security CI/CD pipeline Integrate security tools Security testing
23/07/2024
Project-based
*We are unable to sponsor for this 6+ month straight contract role, no 3rd party candidates will be considered* Prestigious Enterprise Company is currently seeking a Cyber Security Infrastructure Engineer and Architect with Azure experience. Candidate will be responsible for the planning, development and implementation of enterprise information security solutions (such as authentication and authorization, public key infrastructure, data loss prevention, and security event information management) to address the current and emerging security needs of the business. This role requires the solution of complex enterprise-scale information security problems. The role will design and develop new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Responsibilities: Contributes to a team that ensures the security of enterprise data and systems by developing enterprise information security solutions. Creates and updates a view of IT assets, related attack surfaces, and threat actors to illustrate the flow of data and associated security threats. Researches, designs, and develops new enterprise technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Serves as a security expert in one or more of application development, database design, network, and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices. Analyzes business impact and exposure based on emerging security threats, vulnerabilities, and risks and contributes to the development and maintenance of information security architecture. Engages with security specialists and other functional area architects to ensure adequate enterprise security solutions are in place to sufficiently mitigate identified risks, and to meet business objectives and regulatory requirements. Serves as a cybersecurity subject matter expert, assessing the business impact of cybersecurity risks to the enterprise and identifying options and recommendations for mitigating those risks. Serves as an expert in one or more of platform, application, storage, network, virtualization, cloud and mobile security best practices. Cloud Security: Shared Responsibility model Secure services in the cloud Infrastructure security in the cloud Secure boundaries Authentication & Authorization security services in the Cloud Cloud Native VS Third party security capabilities Container Security Container security life cycle Image scanning Qualifications: Strong knowledge of network security protocols, best practices, and perimeter security tools Strong knowledge of identity and access management controls, including SAML and OAUTH/OIDC based authentication, Active Directory, and role mapping Understanding of common security control solutions for event logging, remote access, endpoint management, and mobile device management Understanding of common data protection technologies such as cryptography, tokenization, and hashing Understanding of Azure native security services and best practices Strong knowledge of threat modelling and risk assessment technologies or frameworks Preferred Skills: The candidate shall have the experience on developing secure view of architecture and secure design documents for different applications ability to lead the exercise of collecting the required data to produce the deliverables Ability to articulate the requirements in technical and non technical language Ability to defend secure design and support it with real life scenarios Ability to articulate the risk and findings in business language Explain vulnerabilities and threats Threat modelling Recent attacks Application Security Focus Areas Secure Code Development Secure SDLC Secure Agile development Testing Security requirements Writing security stories Web Application Security Owasp 10 SAST and DAST Scan API Security CI/CD pipeline Integrate security tools Security testing
Long term contract role - remote rate is around $115 c2c CYBERSECURITY ENGINEER/ARCHITECT Must have very clear communication skills Mandatory Technical Skills: Strong knowledge of network security protocols, best practices, and perimeter security tools Strong knowledge of IAM controls, including SAML and OAUTH/OIDC based authentication, Active Directory, and role mapping Understanding of common security control solutions for event logging, remote access, endpoint management, and mobile device management Understanding of common data protection technologies such as cryptography, tokenization, and hashing Additional Technical Skills: Understanding of Azure native security services and best practices Strong knowledge of threat modelling and risk assessment technologies or frameworks Desired Skills: Architecture Skills The candidate shall have the experience on developing secure view of architecture and secure design documents for different applications ability to lead the exercise of collecting the required data to produce the deliverables Ability to articulate the requirements in technical and non technical language Ability to defend secure design and support it with real life scenarios Ability to articulate the risk and findings in business language Explain vulnerabilities and threats Threat modelling Recent attacks Application Security Focus Areas Secure Code Development Secure SDLC Secure Agile development Testing Security requirements Writing security stories Web Application Security Owasp 10 SAST and DAST Scan API Security CI/CD pipeline Integrate security tools Security testing Cloud Security Focus Area Shared Responsibility model Secure services in the cloud Infrastructure security in the cloud Secure boundaries Authentication & Authorization security services in the Cloud Cloud Native VS Third party security capabilities Container Security Container security life cycle Image scanning
23/07/2024
Project-based
Long term contract role - remote rate is around $115 c2c CYBERSECURITY ENGINEER/ARCHITECT Must have very clear communication skills Mandatory Technical Skills: Strong knowledge of network security protocols, best practices, and perimeter security tools Strong knowledge of IAM controls, including SAML and OAUTH/OIDC based authentication, Active Directory, and role mapping Understanding of common security control solutions for event logging, remote access, endpoint management, and mobile device management Understanding of common data protection technologies such as cryptography, tokenization, and hashing Additional Technical Skills: Understanding of Azure native security services and best practices Strong knowledge of threat modelling and risk assessment technologies or frameworks Desired Skills: Architecture Skills The candidate shall have the experience on developing secure view of architecture and secure design documents for different applications ability to lead the exercise of collecting the required data to produce the deliverables Ability to articulate the requirements in technical and non technical language Ability to defend secure design and support it with real life scenarios Ability to articulate the risk and findings in business language Explain vulnerabilities and threats Threat modelling Recent attacks Application Security Focus Areas Secure Code Development Secure SDLC Secure Agile development Testing Security requirements Writing security stories Web Application Security Owasp 10 SAST and DAST Scan API Security CI/CD pipeline Integrate security tools Security testing Cloud Security Focus Area Shared Responsibility model Secure services in the cloud Infrastructure security in the cloud Secure boundaries Authentication & Authorization security services in the Cloud Cloud Native VS Third party security capabilities Container Security Container security life cycle Image scanning
Contract - Cybersecurity Infrastructure Engineer/Architect Rate: Open Location: Remote in the United States *We are unable to provide sponsorship for this role* Qualifications 8+ years of Security Infrastructure focus with an emphasis on the following: Security Design, Infrastructure security, Cloud migration, Citrix cloud, SDWAN security, VPN, GitHub security, MS Power platform, MS co-pilot Experienced in large enterprise environments is a must Understanding of Azure native security services and best practices Strong knowledge of threat modelling and risk assessment technologies or frameworks Strong knowledge of network security protocols, best practices, and perimeter security tools Strong knowledge of identity and access management controls, including SAML and OAUTH/OIDC based authentication, Active Directory, and role mapping Understanding of common security control solutions for event logging, remote access, endpoint management, and mobile device management Understanding of common data protection technologies such as cryptography, tokenization, and hashing Responsibilities Contributes to a team that ensures the security of enterprise data and systems by developing enterprise information security solutions. Creates and updates a view of IT assets, related attack surfaces, and threat actors to illustrate the flow of data and associated security threats. Researches, designs, and develops new enterprise technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Serves as a security expert in one or more of application development, database design, network, and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices. Analyzes business impact and exposure based on emerging security threats, vulnerabilities, and risks and contributes to the development and maintenance of information security architecture. Engages with security specialists and other functional area architects to ensure adequate enterprise security solutions are in place to sufficiently mitigate identified risks, and to meet business objectives and regulatory requirements. Serves as a cybersecurity subject matter expert, assessing the business impact of cybersecurity risks to the enterprise and identifying options and recommendations for mitigating those risks.
23/07/2024
Project-based
Contract - Cybersecurity Infrastructure Engineer/Architect Rate: Open Location: Remote in the United States *We are unable to provide sponsorship for this role* Qualifications 8+ years of Security Infrastructure focus with an emphasis on the following: Security Design, Infrastructure security, Cloud migration, Citrix cloud, SDWAN security, VPN, GitHub security, MS Power platform, MS co-pilot Experienced in large enterprise environments is a must Understanding of Azure native security services and best practices Strong knowledge of threat modelling and risk assessment technologies or frameworks Strong knowledge of network security protocols, best practices, and perimeter security tools Strong knowledge of identity and access management controls, including SAML and OAUTH/OIDC based authentication, Active Directory, and role mapping Understanding of common security control solutions for event logging, remote access, endpoint management, and mobile device management Understanding of common data protection technologies such as cryptography, tokenization, and hashing Responsibilities Contributes to a team that ensures the security of enterprise data and systems by developing enterprise information security solutions. Creates and updates a view of IT assets, related attack surfaces, and threat actors to illustrate the flow of data and associated security threats. Researches, designs, and develops new enterprise technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors. Serves as a security expert in one or more of application development, database design, network, and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices. Analyzes business impact and exposure based on emerging security threats, vulnerabilities, and risks and contributes to the development and maintenance of information security architecture. Engages with security specialists and other functional area architects to ensure adequate enterprise security solutions are in place to sufficiently mitigate identified risks, and to meet business objectives and regulatory requirements. Serves as a cybersecurity subject matter expert, assessing the business impact of cybersecurity risks to the enterprise and identifying options and recommendations for mitigating those risks.
Mission Context: Do you want to shape the future of banking today? At BNP Paribas Fortis, the leading bank in the country, our team transforms challenges into opportunities, providing clients with innovative solutions tailored to their needs. Our Centre of Expertise (COE) Security department supports IT and Business in making informed information security risk decisions and implementing a robust information security management system. The purpose of the Cyber Defense team is to prepare for and respond to unauthorized cyber activities by providing the following services: - Proactive Services: Support and intelligence to prepare and secure bank systems against cyber-attacks, ensuring the collection, assessment, and sharing of threat information. - Reactive Services: Activated by a request, incident, or event identified by an intrusion detection system or reported by humans. To support these services, BNP Paribas Fortis is seeking a Security Logging & Monitoring Specialist. Role Overview: Your Future Role: The Security Logging & Monitoring Specialist represents various stakeholders and the internal client's voice, identifying their expectations, preferences, and aversions, and translating these into business requirements. The Specialist ensures the engineering team thoroughly understands the products and monitors progress. The role includes defining stories, prioritizing the backlog, and organizing the execution of operational priorities while maintaining the conceptual and technical integrity of features/user stories. The Specialist also plays a significant role in quality assurance and is empowered to judge the finalization of stories. Key Responsibilities: - Translate the Cyber Defense vision and strategy into a target operating model and processes for Security Logging & Monitoring capabilities. - Effectively communicate the target operating model and processes to key stakeholders and Cyber Defense team members. - Incorporate stakeholder input into the product roadmap and negotiate priorities based on value to BNP Paribas Fortis. - Collaborate daily with stakeholders and IT teams to clarify requirements, remove roadblocks, and ensure alignment around Security Logging & Monitoring capabilities. - Ensure delivery of the Security Logging & Monitoring yearly roadmap by partnering with delivery teams, removing barriers, and resolving issues quickly and efficiently. - Set quality standards for delivery, develop test plans, monitor user story acceptance criteria, review deliverables, provide feedback, and improve team processes. - Lead problem resolution to ensure prompt and efficient service. - Manage Security Logging & Monitoring key performance indicators (KPIs). Applicative Security Logging & Monitoring: - Understand banking applications (API, Payments) and their business context. - Translate a complex applicative ecosystem, distributed across many layers and devices, into effective detection conditions (events, log sources, detection logic). - Improve and maintain the applicative use case creation and maintenance methodology, considering the relationships among all actors involved locally and in the BNPP Group. Language Requirements: - Dutch: Good spoken (preferable) - French: Good spoken (mandatory) - English: Fluent spoken & written (mandatory) Education: Bachelor's or Master's degree or equivalent by experience. Technical Experience (Mandatory): - At least 5 years of experience in information security, preferably 7 years. - Strong knowledge of IT security technology and processes (secure networking, web infrastructure, system security, SOC tooling, etc.). - Experience building SOC-related frameworks: target operating models, roles, processes. - Experience with processes in a SOC or CSIRT environment. - Experience setting best practices and quality controls over SOC processes. - Knowledge of the applicative security ecosystem. Preferable: - Knowledge of the architecture of banking applications. - Knowledge of log aggregation, SIEM solutions, and Digital Analytics Platforms such as Splunk, ArcSight, ELK, etc. - Knowledge of Web Application Security Development (OWASP).
23/07/2024
Project-based
Mission Context: Do you want to shape the future of banking today? At BNP Paribas Fortis, the leading bank in the country, our team transforms challenges into opportunities, providing clients with innovative solutions tailored to their needs. Our Centre of Expertise (COE) Security department supports IT and Business in making informed information security risk decisions and implementing a robust information security management system. The purpose of the Cyber Defense team is to prepare for and respond to unauthorized cyber activities by providing the following services: - Proactive Services: Support and intelligence to prepare and secure bank systems against cyber-attacks, ensuring the collection, assessment, and sharing of threat information. - Reactive Services: Activated by a request, incident, or event identified by an intrusion detection system or reported by humans. To support these services, BNP Paribas Fortis is seeking a Security Logging & Monitoring Specialist. Role Overview: Your Future Role: The Security Logging & Monitoring Specialist represents various stakeholders and the internal client's voice, identifying their expectations, preferences, and aversions, and translating these into business requirements. The Specialist ensures the engineering team thoroughly understands the products and monitors progress. The role includes defining stories, prioritizing the backlog, and organizing the execution of operational priorities while maintaining the conceptual and technical integrity of features/user stories. The Specialist also plays a significant role in quality assurance and is empowered to judge the finalization of stories. Key Responsibilities: - Translate the Cyber Defense vision and strategy into a target operating model and processes for Security Logging & Monitoring capabilities. - Effectively communicate the target operating model and processes to key stakeholders and Cyber Defense team members. - Incorporate stakeholder input into the product roadmap and negotiate priorities based on value to BNP Paribas Fortis. - Collaborate daily with stakeholders and IT teams to clarify requirements, remove roadblocks, and ensure alignment around Security Logging & Monitoring capabilities. - Ensure delivery of the Security Logging & Monitoring yearly roadmap by partnering with delivery teams, removing barriers, and resolving issues quickly and efficiently. - Set quality standards for delivery, develop test plans, monitor user story acceptance criteria, review deliverables, provide feedback, and improve team processes. - Lead problem resolution to ensure prompt and efficient service. - Manage Security Logging & Monitoring key performance indicators (KPIs). Applicative Security Logging & Monitoring: - Understand banking applications (API, Payments) and their business context. - Translate a complex applicative ecosystem, distributed across many layers and devices, into effective detection conditions (events, log sources, detection logic). - Improve and maintain the applicative use case creation and maintenance methodology, considering the relationships among all actors involved locally and in the BNPP Group. Language Requirements: - Dutch: Good spoken (preferable) - French: Good spoken (mandatory) - English: Fluent spoken & written (mandatory) Education: Bachelor's or Master's degree or equivalent by experience. Technical Experience (Mandatory): - At least 5 years of experience in information security, preferably 7 years. - Strong knowledge of IT security technology and processes (secure networking, web infrastructure, system security, SOC tooling, etc.). - Experience building SOC-related frameworks: target operating models, roles, processes. - Experience with processes in a SOC or CSIRT environment. - Experience setting best practices and quality controls over SOC processes. - Knowledge of the applicative security ecosystem. Preferable: - Knowledge of the architecture of banking applications. - Knowledge of log aggregation, SIEM solutions, and Digital Analytics Platforms such as Splunk, ArcSight, ELK, etc. - Knowledge of Web Application Security Development (OWASP).
Software Solution Architect - SC Cleared - Southampton - £70k to £110k plus bonus A world renowned defence consultancy are looking for a Solution Architect to be responsible for the architecture and high-level design of software enabled solutions. You will have strong experience in architecting distributed software solutions that include Middleware technologies to move and manage information around a network where communications may be denied, degraded, intermittent and limited. These solutions are deployed to customer environments that are based on military tactical equipment and communications with no Internet connectivity. Areas of Responsibility/Tasks: Architecture Definition & Analysis Stakeholder Engagement and Management Solution Assessment and Validation Requirements Elicitation and Analysis User engagement and behavioural modelling Required skills and experience: Understanding of the Deployed and Tactical Military Domains in areas such as ISTAR, Communications and Information Systems (CIS) and Cyber Understanding of relevant technology domains including software applications, application hosting infrastructure, Middleware, AI/ML, networks, data, security, system management and communications. Ability to apply architectural methods to define and assess effective technology solutions to meet critical user needs. Ability to build constructive relationships with clients, including adapting to their culture and ways of working. Strong verbal and written communication skills, including the ability to summarise, write and deliver concise technical information and to apply appropriate data visualisation techniques. Proven track record in software solution development, ensuring consistency with specified requirements agreed with both external and internal customers. Demonstrable experience of defining robust engineering management plans and leading teams to follow them. These plans include use of continuous integration, continuous deployment, and test-driven development. Familiarity using Agile delivery methodologies such as SAFE v6.0, Scrum and Kanban. Software Solution Architect - SC Cleared - Southampton - £70k to £110k plus bonus
23/07/2024
Full time
Software Solution Architect - SC Cleared - Southampton - £70k to £110k plus bonus A world renowned defence consultancy are looking for a Solution Architect to be responsible for the architecture and high-level design of software enabled solutions. You will have strong experience in architecting distributed software solutions that include Middleware technologies to move and manage information around a network where communications may be denied, degraded, intermittent and limited. These solutions are deployed to customer environments that are based on military tactical equipment and communications with no Internet connectivity. Areas of Responsibility/Tasks: Architecture Definition & Analysis Stakeholder Engagement and Management Solution Assessment and Validation Requirements Elicitation and Analysis User engagement and behavioural modelling Required skills and experience: Understanding of the Deployed and Tactical Military Domains in areas such as ISTAR, Communications and Information Systems (CIS) and Cyber Understanding of relevant technology domains including software applications, application hosting infrastructure, Middleware, AI/ML, networks, data, security, system management and communications. Ability to apply architectural methods to define and assess effective technology solutions to meet critical user needs. Ability to build constructive relationships with clients, including adapting to their culture and ways of working. Strong verbal and written communication skills, including the ability to summarise, write and deliver concise technical information and to apply appropriate data visualisation techniques. Proven track record in software solution development, ensuring consistency with specified requirements agreed with both external and internal customers. Demonstrable experience of defining robust engineering management plans and leading teams to follow them. These plans include use of continuous integration, continuous deployment, and test-driven development. Familiarity using Agile delivery methodologies such as SAFE v6.0, Scrum and Kanban. Software Solution Architect - SC Cleared - Southampton - £70k to £110k plus bonus
Global Enterprise Partners
Amsterdam, Noord-Holland
Global Enterprise Partners is currently looking for a Cyber Security & Disaster Resilience SME for a financial institution in Amsterdam, The Netherlands. Please note that for this role candidates should already be living in or very near to the Netherlands Job Description: The Cyber & Disaster Resilience SME role will play a vital role in the Resilience Factory Team by leading resilience assessment workshops with technical teams and block teams of the Bank. In this role you need to understand and recognize the various IT landscapes of the different teams and technology stacks, assess the current security posture of existing systems and applications, evaluate the existing threats, its current risk exposure and propose a strategic disaster recovery solution to enhance efficiency, scalability, availability and security. You need to collaborate with various engineers, technical experts, architects, block teams and show a basic level of expertise in system architecture, good knowledge in various platforms and cloud technologies, networking, cyber security, IT risk management and security business resiliency. This requires an individual who can work across the various lines of defence and bring expertise and analysis in the area of cyber and disaster resilience: Understand current cyber threats and the technical aspects of the attacks used Provide oversight and influence of the Bank's cyber assessment capabilities Participate within threat action groups targeting cyber resilience related threats Work with different Factory team members leading security resilience workshops and document risk reports and IT assessment worksheets related to cyber resilience Mix quantitative and qualitative metrics to measure cyber resilience exposure Lead through influence and collaboration supporting constructive input and challenge Set impact and risk tolerances, monitor threshold levels and contingency plans for important business services (including third parties) Key skills: Strong understanding of Enterprise applications, Servers, storage systems, Networking, Databases, Cloud etc., Evaluate existing systems and infrastructure to identify areas of threats Contribute in IT risk assessment workshops and evaluate existing controls in place Recommend disaster recovery solutions that encompass applications, data, infrastructure, and security considerations Provide technical guidance and mentorship to block teams during workshop Should be able to interpret the existing architecture, underlying components to validate, challenge and help the team to define the detailed scenarios and the recovery solutions Ability to work effectively in a fast-paced, collaborative environment Qualifications: A relevant degree in IT, information security or equivalent experience A minimum of 3-5 years of experience. We're looking for expert from a Medior to Senior level range. Proficiency in the main cyber resilience and security management frameworks like ISO27001, ISO22301, ISO27005 Have significant experience working in cybersecurity threat management Experience of cyber resilience strategies, design, engineering and architecture Able to communicate to technical and non-technical audiences, able to explain complex topics with simplicity Able to articulate requirements clearly to non-cyber experts spanning data analytics, reporting and risk to ensure resultant cyber resilience reports are consumable and relevant This requires an individual who can work across the various lines of defence and bring expertise and analysis in the area of cyber resilience Good analytical, problem-solving, and communication skills Should be able in workshops/meetings to steer towards intended output Cyber security certification such as CISM, CISSP is a plus Nice to have: Experience in the Banking industry is a plus Understanding of cloud computing platforms (Azure) and hybrid Experience in Disaster Recovery and/or assembling Disaster Recovery Plans Basic knowledge of the various technologies used by development teams; Java, Mainframe, Azure, AWS Do you recognize yourself in the above and do you meet the requirements? Please get in touch with Marco Eindhoven of Global Enterprise Partners on telephone number
23/07/2024
Project-based
Global Enterprise Partners is currently looking for a Cyber Security & Disaster Resilience SME for a financial institution in Amsterdam, The Netherlands. Please note that for this role candidates should already be living in or very near to the Netherlands Job Description: The Cyber & Disaster Resilience SME role will play a vital role in the Resilience Factory Team by leading resilience assessment workshops with technical teams and block teams of the Bank. In this role you need to understand and recognize the various IT landscapes of the different teams and technology stacks, assess the current security posture of existing systems and applications, evaluate the existing threats, its current risk exposure and propose a strategic disaster recovery solution to enhance efficiency, scalability, availability and security. You need to collaborate with various engineers, technical experts, architects, block teams and show a basic level of expertise in system architecture, good knowledge in various platforms and cloud technologies, networking, cyber security, IT risk management and security business resiliency. This requires an individual who can work across the various lines of defence and bring expertise and analysis in the area of cyber and disaster resilience: Understand current cyber threats and the technical aspects of the attacks used Provide oversight and influence of the Bank's cyber assessment capabilities Participate within threat action groups targeting cyber resilience related threats Work with different Factory team members leading security resilience workshops and document risk reports and IT assessment worksheets related to cyber resilience Mix quantitative and qualitative metrics to measure cyber resilience exposure Lead through influence and collaboration supporting constructive input and challenge Set impact and risk tolerances, monitor threshold levels and contingency plans for important business services (including third parties) Key skills: Strong understanding of Enterprise applications, Servers, storage systems, Networking, Databases, Cloud etc., Evaluate existing systems and infrastructure to identify areas of threats Contribute in IT risk assessment workshops and evaluate existing controls in place Recommend disaster recovery solutions that encompass applications, data, infrastructure, and security considerations Provide technical guidance and mentorship to block teams during workshop Should be able to interpret the existing architecture, underlying components to validate, challenge and help the team to define the detailed scenarios and the recovery solutions Ability to work effectively in a fast-paced, collaborative environment Qualifications: A relevant degree in IT, information security or equivalent experience A minimum of 3-5 years of experience. We're looking for expert from a Medior to Senior level range. Proficiency in the main cyber resilience and security management frameworks like ISO27001, ISO22301, ISO27005 Have significant experience working in cybersecurity threat management Experience of cyber resilience strategies, design, engineering and architecture Able to communicate to technical and non-technical audiences, able to explain complex topics with simplicity Able to articulate requirements clearly to non-cyber experts spanning data analytics, reporting and risk to ensure resultant cyber resilience reports are consumable and relevant This requires an individual who can work across the various lines of defence and bring expertise and analysis in the area of cyber resilience Good analytical, problem-solving, and communication skills Should be able in workshops/meetings to steer towards intended output Cyber security certification such as CISM, CISSP is a plus Nice to have: Experience in the Banking industry is a plus Understanding of cloud computing platforms (Azure) and hybrid Experience in Disaster Recovery and/or assembling Disaster Recovery Plans Basic knowledge of the various technologies used by development teams; Java, Mainframe, Azure, AWS Do you recognize yourself in the above and do you meet the requirements? Please get in touch with Marco Eindhoven of Global Enterprise Partners on telephone number