Sr. Information Architect

Location: Columbus, GA

Overview:

Evaluates, tests, recommends, develops, coordinates, monitors, and maintains information security policies, procedures and systems, including hardware, firmware and software . Ensures that IS security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IS standards and overall IS security . Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents. Investigates and resolves security incidents and recommends enhancements to improve security. Develops techniques and procedures for conducting IS security risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents.
 

Responsibilities

  • Research monitoring of complex systems and response to known and emerging threats against the TSYS network via intrusion detection software
  • Manages detailed, comprehensive investigation of security issues by reviewing the results of work of Analysts I, II, Senior and/or Specialist on analyzing security log data, interpreting data in support of security event management process from various data feeds and triaging on a wide variety of security events.
  • Consults on incident handling process which includes implementation of containment, protection and remediation activities.
  • Mentors on new and emerging threats that can affect the organization's information assets, researches the third party software/solutions, IT configuration changes (including access control requests), and network/system architecture from risk perspective, and provides appropriate direction.
  • Responsible for the design and configuration of security systems, including proxy, remote access, mail gateway, intrusion prevention, wireless networking, data leak prevention, security information and event management and web application firewalls.
  • Mentors on assessing and disseminating threats related to the enterprise in regard to current vulnerability, on managing and developing an emerging threat model.
  • Consults on relationships to risks based on changes to implementation of ISO(
    International Organization for Standardization)/BSO(Business Services Online); counsels on PCI(Payment Card Industry)/Logical Security guidelines and models, HIPPA(health insurance portability and accountability act), PII(Personally Identifiable Information ), and Card personalization.
  • Oversights cost effective solutions for system/application development regarding Information Security processes and concepts in applicable systems and software.
  • Acts as the subject matter expert on Information Security functions pertaining to computer access control on numerous security software products and processes. Researches and stays current on the latest trends, best practices, and technology developments
  • Understands business objectives and provides direction based on best practices, risk, Corporate Policy, and association and regulatory guidelines.
  • Researches and implements the long term strategies for conducting system penetration, vulnerability and web application testing, risk assessments, policy creation.
 
Minimum Qualifications
  • Bachelor's Degree
  • Relevant Experience or Degree in: Bachelor's degree in Computer Science, Info Security, or related field. Or relevant work experience.
  • Typically Minimum 8+ Years Relevant Exp
  • Including network operations or engineering or system administration on Unix, Linux, MAC(Message Authentication Code), or Windows; proven experience working with security operations, intrusion detection systems, Security Incident Even Management systems, and anti-virus collection logs; including knowledge of industry standard security compliance programs((PCI(Payment Card Industry), SOX(Sarbanes-Oxley) , GLBA(Gramm Leach Bliley Act)), etc.). Knowledge of industry standard security compliance programs ((PCI(Payment Card Industry), SOX(Sarbanes-Oxley) , GLBA(Gramm Leach Bliley Act), etc.)

Preferred Qualifications
  • Professional certifications CISSP(Certified Information System Security Professional),CISM(Certified Information Security Manager) ,CISA(Certified-Information-Systems-Auditor),GSEC(GIAC Security Essentials) ,Network +,Security +

Desired Skills and Capabilities:
  • Skills / Knowledge - Having broad expertise or unique knowledge, uses skills to contribute to development of company objectives and principles and to achieve goals in creative and effective ways. Barriers to entry such as technical committee review may exist at this level.
  • Job Complexity - Works on significant and unique issues where analysis of situations or data requires an evaluation of intangibles. Exercises independent judgment in methods, techniques and evaluation criteria for obtaining results. Creates formal networks involving coordination among groups.
  • Supervision - Acts independently to determine methods and procedures on new or special assignments. May supervise the activities of others.
  • Risk Assessment - Ability to identify, communicate, and mitigate risk within technical solution designs
  • Industry Knowledge - Continued self-education of new and emerging threats and relevant processes, controls, or technologies to mitigate them.
  • Incident Response - Knowledge and skills to contribute to all phases of Incident Response.
Tami Andrade Fitzpatrick
Senior Recruiter
720-930-4773
tami@proenlist.com
www.proenlist.com


www.linkedin.com/in/tami-andrade-fitzpatrick
www.linked.com/company/proenlist/
or
this job portal is powered by CATS