- Analyze existing network security controls and strengthen the controls that could make vulnerability exploitation more likely - such as Data Loss Protection, technical debt, etc.
- Design and implement a global NAC solution (e.g. Cisco ISE) to control and authenticate network access including port-based network access control 802.1X.
- Research and propose new VPN, ZTNA, and VPN-less access solutions to provide secure remote access for authorized users and site-to-site remote access.
- Design, architect, and deploy Zscaler cloud-based solution infrastructure across SDWAN-based sites.
- Manage implementation plans and operations supervision of Zscaler solutions (ZIA, ZPA, ZDX, etc.).
- Proactively monitor reporting and consumption information along with policy configurations of Zscaler technologies and make ongoing recommendations to improve the overall experience.
- Review and architecture restricted access to contractors and third-party employees to ensure security and reliability in a self-service environment.
- Develop and automate tools and techniques to scale and accelerate network offensive emulation, anomaly detection, and vulnerability discovery using AI technology. Collaborate with teams to influence implementation, measurement, and mitigation of these vulnerabilities.
- Develop, improve, and communicate a compelling strategy and roadmap for network vulnerability and data leak prevention management.
- Design, implement, maintain, monitor, and support company-wide network security best practices. Draft and share network services configuration hardening standards.
- Build relationships with cyber security teams, network operations, digital assets support, and business areas in support of the global data protection initiative.
- Measure, report, and automate the network security team's performance against objectives, policy compliance targets, and network security goals (e.g., SLAs, KPIs, KRIs, OKRs)
- Install security measures and operate software to protect systems and information infrastructure, including assisting with firewalls security rules, and data security implementation. Regularly review and request updates of firewall rules and configurations to address emerging security risks.
- Collaborate with analysis and responses to alerts generated by IDPS tools.
- Conduct regular security audits of network infrastructure and devices.
- Understand secured web traffic flow standards and custom application-based traffic and design firewall and proxy services.
- Expect to assist as L3 SME for critical business impact P0/P1 network security escalations during operational and non-operational hours.
- Provide data and root cause analysis of network security incidents with corrective actions for improvement. Fix detected vulnerabilities.
- Closely working with compliance and internal audit departments to ensure network security standards are in place, enforced, and maintained, and provide evidence samples according to the requirement.
- Research upcoming trends in information technology and security, stay updated on potential threats and attacks, and come up with preventive roadmaps.
- Help develop and maintain network security content in the internal Knowledge Base.
- Develop and provide network-related Cyber Security Training and improve network Cyber Security Awareness around the global network teams.
- Demonstrable experience in defining, reviewing, analyzing, and creating cybersecurity documentation, including actionable security standards, implementation procedures, cyber risk assessments, cyber security audits, remediation plans, and cyber control guidelines.
- Solid grasp of security controls in Physical (network, platforms) and Cloud environments (i.e., IaaS, PaaS, SaaS, multi-cloud).
- Familiarity with Cloud Security Alliance (CSA) guidelines.
- Extensive experience in the development and delivery of security-level agreements and metrics via real-time reporting and alerting dashboards (SharePoint, Power BI, SQL, Office 365, Microsoft Teams).
- Proficient with a broad array of security software applications and data leak protection tools with an emphasis on Zscaler and Cisco security technologies.
- Detailed understanding of network-related modern systems including firewalls, encryption, network access control, wireless and wired secure access, SD-WAN, SD-Access, secure remote network access, and password protection and authentication.
- Understanding of cyber security frameworks for the OT environment including Industrial control systems (ICS)-the devices, controls, and networks that handle different industrial processes-, supervisory control and data acquisition (SCADA) systems, and distributed control systems (DCS).
- Solid understanding of cyber-security technologies like AV, Sandbox, IPS, IDS, NGFW, and WAF.
- Very solid background with vulnerability discovery and demonstration of exploitations.
- Ability to see through bad actors' eyes and find ways to break open the cyber security protocols and technologies embraced within the organization.
- A data-driven, problem-solving, curious candidate with strong analytical skills and who is not afraid to challenge the status quo.
- A self-starter with a goal-oriented, can-do attitude who is comfortable communicating cyber concepts, and risk management to all levels of personnel.
- Ability to influence other IT professionals, including network engineers, digital support, application owners, project managers, and system managers, to integrate security network controls into existing systems and processes.
- Proven ability to communicate effectively across all levels of the organization, including the delivery and explanation of complex security-related concepts in clear, concise, and understandable terms.
- Bachelor's degree required in technology, information security or related fields or equivalent work experience.
- Demonstrated ability in computer systems with some specialization in computer security highly preferred.
- Knowledge of foundational security controls and how they protect an enterprise environment.
- Relevant certifications (e.g., Certified Information Systems Security Professional - CISSP, Certified Information Security Manager - CISM).
- Very strong capacity to create new exploits or craft existing exploits to identify security loopholes in the network control cyber security plane.
- Experience with PowerShell and SQL query creation and modification.
- Scripting - Working knowledge of computer programming language.
- This is a remote position; however, we require that the candidate be located close to one of the AES locations.
- Some travel required (~15-20%)
-
Security Solution Architect
1 week ago
Marriott International, Inc Bethesda, United States**Job Number** · **Job Category** Information Technology · **Location** Marriott International HQ, 7750 Wisconsin Avenue, Bethesda, Maryland, United States VIEW ON MAP · **Schedule** Full-Time · **Located Remotely?** Y · **Relocation?** N · **Position Type** Management · **JOB S ...
-
Security Architect
1 week ago
TMC Technologies Rosslyn, VA, United StatesJob TitleSecurity ArchitectLocationRosslyn, VA 22209 US (Primary)CategoryInformation TechnologyJob TypeFull-timeCareer LevelExperienced (Non-Manager)EducationBachelor's DegreeTravelNoneSecurity Clearance RequiredSecretJob DescriptionTMC Technologies is in search of a Security Arc ...
-
Security Architect
1 week ago
Peraton Arlington, United StatesPeraton · Peraton drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted and highly... · View company page · Perat ...
-
Security Architect
2 weeks ago
Peraton Arlington, United StatesResponsibilities · Peraton's DSCM program encompasses technical, engineering, data analytics, cyber security, management, operational, logistical and administrative support to aid and advise DoS Cyber & Technology Security (CTS) Directorate. This includes protecting a global cybe ...
-
Security Architect
3 weeks ago
SkyePoint Decisions Arlington, United StatesOverview: · SkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovati ...
-
Security Architect
3 days ago
Blue Rose Consulting Group Arlington, United StatesBlue Rose · is seeking a · Cyber Security Architect - Cloud Security Expert · to support our work with a federal client. This is a · Hybrid role in · Washington, DC · and is open to · U.S. Citizens ONLY. · Successful candidates are required to obtain a · Public Trust Cle ...
-
Security Architect
2 weeks ago
Peraton Arlington, United States Full timeResponsibilities · Peraton's DSCM program encompasses technical, engineering, data analytics, cyber security, management, operational, logistical and administrative support to aid and advise DoS Cyber & Technology Security (CTS) Directorate. This includes protecting a global cybe ...
-
Security Architect
2 weeks ago
SkyePoint Decisions Arlington, United StatesOverview · SkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative ...
-
IT Security Architect
5 days ago
MAXIMUS Arlington, United States· General information · Job Posting Title · Information System Security Officer (ISSO) · Date · Friday, April 19, 2024 · City · Arlington · State · VA · Country · United States · Working time · Full-time · Description & Requirements · Since 1975, Maximus has operated under its f ...
-
IT Security Architect
2 weeks ago
Aurora Ventures Crofton, United StatesYour tasks · You create and implement company-wide security policies and ensure an innovative and sustainable security architecture. · You are responsible for and coordinate the continuous optimization and further development of our IT security for the company. · You identify vul ...
-
Security Architect
1 week ago
Blue Rose Consulting Group, Inc. Washington, United StatesJob Description · Job DescriptionBlue Rose is seeking a Cyber Security Architect - Cloud Security Expert to support our work with a federal client. This is a Hybrid role in Washington, DC and is open to U.S. Citizens ONLY. · Successful candidates are required to obtain a Public ...
-
security solutions architect
2 weeks ago
Randstad Arlington, United Statessecurity solutions architect. · arlington , texas (remote) · posted 1 day ago · job details · summary · $78 - $80 per hour · contract · associate degree · category computer and mathematical occupations · reference · job details · job summary: · Job Requirements - · Possess ...
-
Azure Security Architect
1 week ago
Publicis Groupe Arlington, United StatesCompany Description · Publicis Sapient is a digital transformation partner helping established organizations get to their future, digitally-enabled state, both in the way they work and the way they serve their customers. We help unlock value through a start-up mindset and modern ...
-
Architect with Security Clearance
3 weeks ago
All Native Group Arlington, VA, United StatesSummary Summary The Architect reviews plans and specifications on a variety of large and complex building projects to determine compliance with OSHA, EPA and industry code requirements as well as facilitation of safe building maintenance · Essential Functions · • Reviews plans fo ...
-
Cloud Architect with Security Clearance
1 week ago
SecuriGence LLC Arlington, United StatesJob Title: Cloud Architect Location: Arlington, VA Clearance Level: Top Secret with SCI Eligibility Summary · We deliver essential technology services to our customers in support of their missions to sustain the national security and economic interests of our nation. SecuriGence ...
-
Cyber Security Engineer/Architect
2 weeks ago
ManTech International Corporation Arlington, United StatesLead special projects or investigation into specific technology or solution issues and to shepherd research and piloting of new capabilities with project engineers and/or partner organization as required. Analyze, define, and document requirements fo Security Engineer, Architect, ...
-
Cloud Architect with Security Clearance
1 week ago
CACI Arlington, United StatesCloud Architect Job Category: Information Technology Time Type: Full time Minimum Clearance Required to Start: Secret Employee Type: Regular Percentage of Travel Required: Up to 10% Type of Travel: Local * * * The CACI team is looking to add an experienced Azure Cloud Architect t ...
-
Senior Cloud Security Architect
2 days ago
Gee Group - SNI Companies Arlington, United StatesSNI Companies has partnered with a growing organization in search of Senior Cloud Security Architect · We are currently seeking a seasoned Senior Cloud Security Architect with extensive experience to elevate our security capabilities and strategic initiatives. As a pivotal member ...
-
Sr. Network Security Architect
3 weeks ago
The AES Corporation Arlington, United StatesAt AES, we raise the quality of life around the world by changing the way energy works. Everyone makes an impact every day in our small, global teams. Apply here to start an extraordinary career today. · We are seeking a skilled and seasoned · Senior Security Network Engineer ...
-
Enterprise Architect with Security Clearance
3 weeks ago
SAIC Arlington, VA, United StatesSAIC is looking for a talented Enterprise Architect to our ABMS Family of Systems as part of the Air Force Combatant Command Business Group to spearhead alignment for technology road map development and strategic planning · The ideal candidate possesses expertise in Enterprise Ar ...
Sr. Network Security Architect - Arlington, United States - The AES Corporation
Description
At AES, we raise the quality of life around the world by changing the way energy works. Everyone makes an impact every day in our small, global teams. Apply here to start an extraordinary career today.We are seeking a skilled and seasoned Senior Security Network Engineer to join our network team. The successful candidate will play a critical role in architecting, designing, deploying, monitoring, maintaining, and refreshing secure global IT/OT network infrastructures to protect digital assets from leakage, unauthorized access, and cyber-attacks.
The Senior Security Network Engineer will collaborate with cross-functional and multi-cultural global teams to prevent, detect, and respond to threats to the organization's critical information assets. .
Responsibilities