Security Architect leading security strategy development and implementation for Kyndryl. Conducting performance testing and ensuring compliance with security guidelines and audits.
About the role
- Senior IT Security Architect focusing on cloud application security at AIG, collaborating with global teams and driving security architecture.
Responsibilities
- Play a part in reimagining how customers manage risk.
- Work with cross-functional AIG global information security teams.
- Act as a design authority on cloud application security.
- Ensure all security standards are followed, and any violations are remediated.
- Provide support and guidance in designing complex business and operations security solutions.
- Use cloud Service APIs and SaaS solutions to detect security blueprint violations.
- Work closely with global cloud team and Business CIO team to remediate security violations.
- Develop security requirements for business use-cases meeting AIG's global security standards.
- Build, configure, test and implement secured solutions that are aligned with IT security strategies.
- Establish reference cybersecurity architectures for scale and decentralized deployments.
- Provide architecture guidance across cybersecurity functional areas like Network, Endpoints, Data Protection, Cloud, etc.
Requirements
- 8+ years of IT Security Architecture related work experience, preferably at a large, global organization.
- 3+ years of engineering and hands-on design and architecture of effective security controls and measurement in network and applications domains for large financial enterprise.
- Hands-on with development of applications security architecture for migration of IT workload to Cloud services.
- Expert knowledge and implementation experience of cloud security domains of IAM, SaaS, IaaS, PaaS, Applications and Data Security.
- Strong knowledge of DevSecOps, security policies and incident response.
- Proven expertise in building a defense in depth infrastructure security architecture that includes security controls across multiple technology stacks.
- Strong understanding of how cloud data breach can occur.
- Understand how adversary might compromise various cloud services and how to prevent, detect and respond.
- Cloud Services (AWS/Azure/GCP) experience in migration of applications to the cloud, automation through various tools both AWS native and third-party.
- Implement Configuration Management and Infrastructure as Code (e.g. Chef, CloudFormation, Terraform, Puppet).
- Experience in DevOps environments and automating security controls into the CI/CD process.
- Ability to work across all layers of an application and technology infrastructures.
- Ability to work with development teams to deliver high-quality security architectures.
- Bachelor’s degree in information technology, computer science or equivalent work experience.
- Master's degree preferred.
- Excellent verbal and written communication skills.
- Must be a strong team player.
Benefits
- Competitive benefits package
- Bonus eligibility in accordance with the applicable incentive plan
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Junior Consultant working on Cyber Security standards and customer advisory at MKS4U IT - Beratungs GmbH. Engaging in security assessments and developing long - term security strategies.
IT - Security Consultant at Institut für Datenschutz und Datensicherheit guiding IT compliance and security strategies. Engage with clients to enhance IT security practices across Germany.
Business Development Representative creating and managing lead generation pipelines for cybersecurity solutions. Engaging with enterprise clients in Switzerland and Germany in a hybrid work model.
Information Security Officer responsible for developing and implementing security strategies at an IT service provider for the food and beverage industry. Engaging with teams and management on cyber risks and compliance.
Information Security Manager leading CISOaaS or GRC consultants for NVISO in Germany. Enhancing clients’ cybersecurity posture and driving strategic security initiatives.
Técnico de Segurança do Trabalho JR assisting with safety documentation and training for field activities at Arcadis. Focused on sustainable solutions in engineering and consulting.
Compliance Specialist managing documentation and policies for Orro's Information Security Management System. Supporting essential compliance activities across ISO 27001 and IRAP with strong attention to detail.
Infra Security Engineer focusing on endpoint security solutions in South Korea's urban mobility services. Collaborating on security architecture and threat detection initiatives.
Senior Security Engineer managing the vulnerability management program and collaborating with engineering teams at Causaly. Focused on cloud security and secure coding practices.