Information Security Architect (Contract)

SUMMARY:
-

POSITION INFO:

Top Automotive client is seeking an Information Security Architect (ISA) to support the DEVOPS team to promote DevSecOps in order to build secure systems. The main objective for the ISA is to review and evaluate Cybersecurity solutions that promote interoperability and manageability throughout the software development lifecycle (SDLC) while meeting Daimler risk management needs and requirements.

The Job Requirements and Outputs

• The ISA will assess, design and maintain security architectures, solutions and technologies in a manner that promotes interoperability and manageability securely.
• Evaluate acquired or developed systems to ensure alignment with cybersecurity strategy.
• Develop and provide implementation guidance to ensure enterprise components are properly integrated and aligned with global strategies, polices and standards.
• Conduct architecture meetings with relevant stakeholders as needed to collaborate on strategy and implementations.
• Assist in the creation of design documents for global and local driven initiatives.
• Identify and evaluate tools and techniques to capture, model and analyze security architecture options.
• Perform threat modeling and create/update security profiles for existing and to-be-developed systems.
• Maintain a consistent set of reference cyber architectures and their alignment to technical, service and business architectures as required.
• The ISA will be responsible for the analysis of cybersecurity solutions architecture in alignment with business needs, architectural principles, security protection, requirements and required functionality throughout the systems development life cycle and application/system life cycle.
• Ensure standard security architecture reviews and testing is performed. The ISA is responsible for keeping abreast of the latest trends in cybersecurity architecture, threats, vulnerabilities and risk management.

• Systemically identify and document application level vulnerabilities.
• Communicate identified vulnerabilities and recommended mitigation strategies.
• Provide guidance and recommendations for remediating application vulnerabilities
• Track and report on remediation status.
• Facilitate and deliver targeted application security training to the development team.
• Stay current on industry leading practices and technologies.
• Actively contribute to requests for input and feedback into global Security Operations data protection and vulnerability management initiatives.

Qualification and Experience:

• Bachelor’s or Master’s degree in Computer Science, Information Security, Information Systems, Computer Engineering, or a related field is required.
• Minimum of 5 years of relevant work experience in cybersecurity architecture and engineering.
• Experience in building architectures and frameworks while applying cybersecurity principles.
• Experience in system and network planning and integration into proposed business solutions.
• Experience in threat modelling and security profiling evaluation for On-Premises and Cloud based systems.
• Consult on cloud assessments and project security planning.
• Derive Security requirements.
• Experience in developing and implementing physical and logical counter measures to identified security risks.
• Experience interacting with development teams to articulate requirements and processes while collaborating on architecture and engineering design options, implementation, testing and user acceptance.
• Experience identifying, evaluating and managing risk in a complex and changing environment.
• Experience discerning an organization’s security controls for information systems and networks based on vulnerabilities and business needs.
• At least one of the following certifications is required: CISSP, CCSP, CCSK, CCSLP, TPSSE, TISP, or MCSA.

Please forward CV and ALL supporting documentation to, --------Please upload your CV here-------->

Should you not hear from Profile Personnel within 14 days please consider your application unsuccessful for the vacancy. Please note all applications will automatically be added to our database for future vacancies.

NB! This job is now closed. You can apply for other jobs by uploading your CV.