Cyber Security Architect - Colombia - J.S. Held

J.S. Held

Empresa verificada

Colombia

hace 3 semanas

Publicado por:

Carolina González

beBee Recruiter

Descripción

The Company

Are you looking to join an organization that is growing and dynamic? What about a high-energy, collaborative environment that rewards hard work?
J.S. Held is a global consulting firm providing technical, scientific, and financial expertise across all assets and value at risk.

Our professionals serve as trusted advisors to organizations facing high-stakes events demanding urgent attention, staunch integrity, clear-cut analysis, and an understanding of both tangible and intangible assets.

The firm provides a comprehensive suite of services, products, and data that enable clients to navigate complex, contentious, and often catastrophic situations
.

We have over 100 locations worldwide. We are highly committed to all members of our community, both employees and clients. Our organization focuses on promoting a sense of community and inspiring our people to achieve results that exceed goals.

Job Summary

This position is responsible for formalizing the design and implementation of a comprehensive information security architecture for J.S. Held in alignment with the business requirements.

This person will design mature and optimal security and compliance controls in support of on-prem, cloud computing environments, hosted systems, DevOps, SaaS, Directory services, Cyber Security tools, and other technologies and processes.

In addition, the Cyber Security Architect will be responsible for assisting the CISO in developing, managing, and implementing the Cyber Security strategy and roadmap.

Controls are to be designed to meet the requirements, including business risk, client commitments, Laws, and Regulations.

Job Responsibilities

Lead and manage the development of Cyber Security Architecture, design, and standards
Ensure architecture protects the Confidentiality, Integrity, and Availability of J.S. Held Technology Systems and Data in alignment with the risk appetite.
Provide architecture leadership and design recommendations to ensure systems development aligns with security standards and best practices.
Lead security design sessions, architect and document technical solutions aligned with business objectives and risk reduction.
Develop and own the control library, including mapping controls to requirements to ensure appropriate coverage.
Ensure that controls are designed to enhance the End User Experience, and Business delivery efficiency and capabilities.
Support the ongoing process to mature the J.S. Held security posture, tooling, process, and overall capabilities, focusing on highly scalable and resilient solutions.
Lead the definition of coding standards; participate in code reviews during projects to ensure quality and appropriate "security in design" patterns are followed.
Work closely with Strategy & Architecture, Integrations, Infrastructure, Application, and End User Teams to align an overall security architecture and to ensure that best practices are implemented.
Oversee security architecture and ongoing assessment of security technologies, and industry and market trends, to determine their potential impact on the enterprise architecture.
Conduct Proof of Concepts and run Pilots.
Define and maintain a forwardlooking Cyber Security Roadmap.
Participates in and reviews risk assessments to ensure compliance with Security Architecture objectives and standards.

Required Qualifications

Master's degree in cyber security, Computer Science, Information Technology, or a related field (or equivalent work experience).
10 years of experience in Information Technology/Cyber/Information Security related role
35 years of experience as Lead Cyber Security Architect required.
Proficiency with Microsoft Azure infrastructure and Microsoft 365 is required.
Professional level English fluency (C2 level) and excellent communication skills.
Extensive experience architecting, designing, and engineering advanced cloud security solutions.
Deep expertise in Azure Public Cloud Security, M365/O365, Azure Active Directory and SaaS Collaboration Platforms.
Strong experience designing, implementing, and securing network infrastructure in the Azure cloud environment.
Indepth knowledge of Azure networking services (VNets, NSGs, VPNs, ExpressRoute, Firewall).
Deep expertise with network security technologies and solutions (firewalls, IDS/IPS, WAF, SIEM systems).
Technical knowledge must include SQL, Azure SQL, Microsoft's Common Data Service, data components of Office 365, and Power BI.
This role requires a deep understanding of data security.
Understanding of security frameworks and standards (NIST, CIS, OWASP).
Excellent Cyber Security analytical and problemsolving skills.
Excellent communication skills to collaborate with crossfunctional teams and present security concepts to technical and nontechnical stakeholders.
Experience collaborating with remote colleagues.
Ability to deal with ambiguity and flexibility to work collaboratively with others