Security Architect

Security Architect

This position is responsible for :

• Developing, implementing, and maintaining information security control standards and technologies
• having a specialist understanding of information systems security practices and an understanding of infrastructure security controls and technologies in a hybrid (public cloud and LAN) network environment
• having specialist knowledge of perimeter security systems (next generation firewalls, IDS / IPS, Content Filtering, Endpoints)
• leading or participating in security incident responses, security-related projects, and designs for cloud-based technologies in regards to security and networking

Specific Responsibilities and Deliverables :

• Technical team lead for members of Cybersecurity Operations department.
• Applying expert knowledge in enterprise secured network design concepts and security controls best practices, providing advice and assistance to team members through peer review of work assignments.
• Acting as subject matter expert in the development, implementation, and operations of network security controls to secure cloud (Microsoft Azure) IaaS and PaaS resources.
• Leading projects requiring IT Operations staff or resources and participating in the requirements definition, secured network architecture, design, implementation and testing phases of various projects.
• Providing inputs based on best practices and industry standards in the development of operating procedures and standards for IT Security operations.
• Acting as an enterprise network security consultant to WorkSafeBC stakeholders and project teams.
• Researching, evaluating, and specifying appropriate enterprise network security technologies or practices required by WorkSafeBC projects.
• Assisting to develop Cybersecurity product plans and roadmaps to manage the technical lifecycle of the security product / tools portfolio.
• Participating in infrastructure vulnerability testing.
• Providing advice based on the security goals, objectives, and policies of the organization. Assisting projects by assessing risk, identifying security issues, and providing guidance regarding the interaction of the proposed solution with the organization’s security infrastructure.
• Ensuring the effective delivery of technical security support and coordinating the efforts of managers and technology specialists with the monitoring of security breaches to ensure that systems architectures are compatible with existing IT security standards
• Ensuring that necessary security information and technical resources are available to management when dealing with security breach issues.

Mandatory Requirements :

• Microsoft Azure design experience around networks and security
• Next-generation firewall (Checkpoint, Palo Alto, Cisco, etc.) operation and management experience
• Azure VMS design experience
• Azure ExpressRoute and Virtual Networking Experience
• Microsoft Azure Policy
• Microsoft Sentinel / SIEM experience (mandatory)
• Data Collection Rules
• Defender for Endpoint / Cloud / Identity
• Active Directory including GPOs
• Scripting experience such as PowerShell, Az cli, python, other languages or via restapi calls)
• KQL knowledge
• Service Now Dashboard / Report creation, Automated workflow validation
• Windows Security troubleshooting and auditing
• Vulnerability Management
• Azure DevOps or similar kanban / agile toolset
• Certificate Management / PKI
• Configuration Management experience with tools like terraform / ansible / puppet / etc
• Network and server administration

Security Architect Assignment Length

12 months

Security Architect Assignment Location

Hybrid : 1-2x days on-site per month in Richmond, BC