Job Description

Job Title:  InfoSec Architect 
Job Number: 21051

Our client is searching for an InfoSec Architect with proven expertise architecting various business applications.  The ideal candidate will be self driven with ability to evaluate security controls to ensure that it aligns with business needs. 

Opportunity Overview :
  • Evaluates architectural patterns for service account authentication; Privileged Access Management; DevSecOps pipeline; security logging and monitoring; audit logging; and compliance guidance and monitoring
  • Accountable for protecting the business, clients and employees by solving and identifying threats to business
  • Applies knowledge pertaining to cyber security technical and non-technical solutions.
  • Review and provide guidance enabling business system in the cloud while leveraging Platform as a Service (PaaS), Infrastructure as a Service (IaaS) and Software as a Service (SaaS) in a manner that adheres to security policy and standards.
  • Review and approve target state deployment topology, High-Level Architecture and Private Link interactions for the Public Cloud Workloads
  • Share cloud technology expertise with application architects and provide consultative support to application teams including assessment of connectivity requirements, VNet/VPC, and subnet design and recommendations
Qualifications & Required skills
  • Minimum 12 years of prior relevant experience including prior management experience.
  • Minimum 3 years of financial services experience
  • 5+ years of security architecture in banking
  • Cloud computing knowledge (aws, azure and dcps as well) -
  • Fluent in English and Spanish ( a plus but not required)
  • Strong understanding of Single Sign on fundamentals 
  • Designed application authentication and authorization solutions(i.e. Single-Sign-On, Multi-Factor Authentication, OAuth, OpenID Connect, Sentinel etc.)
  • Experience with Scrum, Kanban and SAFe Agile practices and strong aptitude to work in a DevOps culture and environment.
  • Full-stack development experience building application software, test automation, and infrastructure as code
  • Familiar with cloud automation frameworks (Terraform, Ansible) and cloud provided automation tools (Azure Resource Manager Templates).
  • Hands-on work experience working with SOAP and REST APIs, microservices design
  • Experience in private network connectivity using Express Routes, Direct Connect, etc.
  • Familiarity with load balancing technologies - ILB (Internal Load Balancers), Application Gateway, WAF (Web App Firewall), F5 appliance solutions, etc.
  • Familiarity with network security principles (Network Security Groups, Application Security Groups), Private Link Services, Service Endpoint, Service Tags, etc.
  • Thorough understanding and experience with AZURE & AWS native controls
  • Good knowledge / hands-on experience in the following in AZURE & AWS
  • Network Security Groups and Micro-segmentation concepts
  • UDR and Load balancers
  • VPN Gateways and ExpressRoute connection
  • Azure Firewall
  • Service tags and service endpoints
  • NAT and PAT concept
  • Automation frameworks (Terraform, Ansible, Chef, Puppet) and automation scripts to support the Azure environment tools (Azure Resource Manager Templates)
  • Operation Management Suite (OMS) queries using Kusto query language (KQL)
  • Security Events and Incident Management (SEIM)
  • Familiarity with OWASP and integrations with static code analysis and dynamic code analysis tools.
Educational and Certification Requirements:
  • Advanced Information Security Certification from (ISC)2, ISACA or equivalent (CISSP, CRISC, CCSP, etc.)
  • Bachelors degree required

Work location and Additional Info:
Remote to start but will be expected to work onsite at later date TBD

Overture Partners is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, national origin, disability, sexual orientation, gender identity or expression, marital status, genetic information, protected veteran status, or other factors protected by federal, state, and/or local law.

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online