Security Design Lead in Rabobank's cybersecurity team, designing secure technology solutions for food & agribusiness banking. Collaborating across teams to ensure robust security implementations.
About the role
- Security Architect engineering enterprise and cloud security controls for a civilian federal agency. Seeking skilled professionals familiar with Zero Trust Architecture and vulnerability management.
Responsibilities
- Design and implement secure architecture solutions across cloud, on Prem, and hybrid environments.
- Develop security standards, policies, and technical guidelines aligned with organizational and regulatory requirements.
- Conduct architecture reviews, threat modeling, and risk assessments for new and existing systems.
- Collaborate with engineering, DevOps, and product teams to ensure security requirements are integrated into system designs.
- Implement, and operate ICAM solutions, including identity lifecycle management, authentication, authorization, and access governance.
- Implement Zero Trust Architecture in alignment with NIST SP 800-207, emphasizing continuous verification, least privilege, and identity-based access.
- Deploy and support SASE / SSE capabilities, including ZTNA, Secure Web Gateway, CASB, and Firewall-as-a-Service.
- Support PIV smart card and certificate-based authentication across users, devices, applications, and cloud environments.
- Operate, and maintain PKI and certificate management services, including certificate issuance, renewal, revocation, and automation.
- Engineer and secure cloud environments (AWS, Azure, or GCP), focusing on identity, networking, logging, and secure configurations.
- Perform vulnerability scanning, risk prioritization, and coordination of remediation activities.
- Support patch management efforts by validating system configurations and verifying remediation of security findings.
- Monitor security and identity events using SIEM and related tools; investigate and respond to security incidents.
- Participate in incident response activities, including alert triage, investigation, containment, eradication, and recovery.
- Develop and maintain incident response playbooks, runbooks, and post-incident documentation.
- Develop and maintain security engineering documentation, standards, and operational runbooks.
- Collaborate with IT, cloud, and application teams to integrate security controls into system designs and CICD pipelines.
- Provide compliance and audit support, including technical evidence for ATO, continuous monitoring, and remediation activities.
Requirements
- Strong knowledge of network security, application security, and cloud security architecture.
- Hands-on experience with major cloud platforms (AWS, Azure, or Google Cloud) and their native security services.
- Expertise in security frameworks such as NIST, ISO 27001, CIS Benchmarks, OWASP, and Zero Trust.
- Proficiency with identity and access management (IAM), SSO, MFA, and federation technologies.
- Solid understanding of encryption, PKI, firewalls, WAFs, SIEM, EDR, and vulnerability management tools.
- Proven experience in identifying and remediating vulnerabilities in both Linux and Windows environments with a strong understanding of compliance requirements.
- Proficiency in using security tools such as Nessus, ORCA, AWS Security Hub, Azure Security Center, Google Cloud Security Command Center, and other vulnerability scanning tools.
- Familiarity with Red Hat Satellite server, WSUS, IBM BigFix or other similar toolsets.
- Knowledge of scripting languages such as Python, Bash, PowerShell, Ansible for automation of security remediation tasks.
- Excellent problem-solving skills and the ability to work under pressure in a fast-paced environment.
- Must be a US citizen.
- Must be able to obtain public trust prior to starting work.
Benefits
- full benefits
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Identity Security Posture Management Specialist enhancing identity security posture at Kemper Insurance. Collaborates across teams to tackle identity risks and compliance challenges in a high - performing culture.
Principal Architect developing cybersecurity strategy for Ensemble's technology - enabled revenue cycle management solutions. Focus on securing cloud architectures and ensuring information assurance in healthcare.
Senior Manager overseeing Security Risk Management at First American. Leading enterprise policies, third - party vendor security, and security strategy execution.
Zscaler Engineer responsible for maintaining cybersecurity tools and developing integrations at HP. Collaborating across teams to enhance data loss prevention strategies and monitor industry threats.
Designer developing comprehensive application solutions for security systems at Johnson Controls. Collaborating on technical sales support and large - scale integrated electronic security systems.
Analyst role supporting Epic Security & Configuration at Acrisure, ensuring application functionality and troubleshooting issues. Collaborating with teams for configuration and security in Applied Epic systems.
Security Detection & Response Engineer for Flutter Entertainment developing security detection frameworks. Collaborating with global teams to enhance cybersecurity operations in complex, multi - cloud environments.
Specialist Software Design Verification Engineer in Cybersecurity at Solventum. Responsible for software verification, testing processes, and compliance with medical device regulations.
Lead defensive threat research on generative and agentic AI systems at RBC. Identify emerging threats and develop proof - of - concept exploits to enhance AI security.