Architect - Cloud Security

• Company Optum
• No. of Openings 7
• Salary Not Disclosed
• Work Type on-site

Job Description :

The successful candidate will have firm knowledge of infrastructure, platform, and data security architecture and best practice concepts. This position will be responsible for providing business analysis and technical architecture analysis as part of a team providing security architecture services to business lines of Optum/UHG. The position requires the ability to understand and provide insight into security considerations for both the big picture and detailed level for applications, databases, networks, including integrations with cloud-based services.

Primary Responsibilities:

• End-to-end information security for assigned projects and programs, including conceptual-stage consulting and solutioning, risk assessment of candidate plans and of completed solutions, security testing and security gap remediation consulting for in-flight and complete solutions
• Active partnership with business and technical stakeholders to understand unique business requirements and develop security domain expertise and technical objectives
• Contributing to the knowledge base of approved security patterns and frameworks
• Providing consulting to business leaders in addressing their security risk posture
• Formally and informally responding to customer and regulatory requests with regard to application security services, mechanisms and safeguards
• Recommending/architecting changes, when appropriate, to security policies and control standards/standards to enhance our operational practices
• Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so

Required Qualifications:

• Bachelor's degree in computer Science IT related
• Security vulnerability and remediation knowledge
• Demonstrated knowledge and experience in multiple areas (three or more of the following):Penetration testing
• Network/application/system vulnerability and threat management
• System hardening (disa stig, cis, nsa)
• Web application firewalls
• Secure application designs (n-tier, OWASP)
• Architecture and related frameworks (SABSA, TOGAF, Jericho, ITIL)
• Firewall rule management
• Secure network design
• Network security fundamentals (DDOS protection, NIDS, IPS), common network attacks and vectors
• Cloud Security Alliance
• Private and public cloud computing architectures (Azure, AWS, Salesforce)
• Identity and Access Management (Siteminder, AD, ADFS, SAML, OAuth, Password Vaulting)
• Encryption methodologies and respective standards (FIPS 140-2, NSA Suite B)
• Familiarity with cyber security standards including ITIL, NIST, COBIT

Preferred Qualifications:

• Industry-specific certifications, including one or more of the following: C|CISO, CISSP, CISA, CISM, CGEIT, GCIH, GAWN, GCFA or current JCNE/CCIE lab passed with a valid certification number
• Experience in security architecture and/or engineering in Fortune 500 companies
• Experience with large healthcare services or financial services and often in-depth technical requirements of a health benefits or financial services company
  • Experience with legislation, regulation and guidance at the State and Federal level, including SOX, HIPAA, GLBA, PCI and/or CFR Part 11