The Security Architect reports to the Chief Information Security Officer. The Chief Information Security Officer determines the activities due by the Security Architect based on evolving needs to improve the company’s security posture and to secure CHAMP assets. Examples of the Security Architect’s responsibilities and duties include:
* Document and address information security, cybersecurity architecture, and systems security engineering requirements throughout the application acquisition or development life cycle.
* Ensure that acquired or developed system(s) and architecture(s) are consistent with the security policies.
* Establish a strategy to implement security-by-design in the software development lifecycle through the development of policies.
* Develop a threat modeling methodology, a framework to define the security requirements per project, a strategy for enabling the automation of Static security testing and dynamic Security Testing through unit security test framework and automated security test cases.
* Improve the Coding Standard and include security best practices.
* Lead a security awareness program for software development.
* Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
* Determine the protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately.
* Provide specialist advice and recommend approaches across teams and various stakeholders.
* Inspire and influence others to execute security principles.
* Research and apply innovative security architecture solutions to new or existing problems and be able to justify and communicate design decisions.
* Develop vision, principles, and strategy for security architecture.
Knowledge, Skills and Abilities:
* CPSA or equivalent highly appreciated.
* CSSLP or equivalent highly appreciated.
* CISSP or equivalent is appreciated.
* Knowledge of the application firewall concepts and functions (e.g., Single point of authentication/audit/policy enforcement, message scanning for malicious content, data anonymization, data loss protection scanning, accelerated cryptographic operations, SSL security, REST/JSON processing).
* Ability to drive strategy to establish SAST and DAST framework.
* Knowledge of the enterprise information technology (IT) architectural concepts and patterns.
* Knowledge of installation, integration, and optimization of system components.
* Knowledge of remote access technology concepts.
* Knowledge of communication methods, principles, and concepts that support the network infrastructure.
* Excellent communication (written and verbal) English skills.
Education and Experience:
* Bachelor’s Degree graduate in related field of study. Master’s Degree in related field of study is appreciated.
* Experience as a Security Architect role for 3 years preferred.
* Experience in Software Development for 5 years.
The selected candidate may be subject to the provision of an up-to-date (not older than 3 months) criminal record certificate.
CHAMP Cargosystems is an equal opportunity employer and prohibits discrimination and harassment of any kind. We are committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions are based on business needs, job requirements, and individual qualifications, without regard to race, ethnic background, religion or belief, family or parental status, or any other status protected by the laws or regulations in the locations where we operate.
#J-18808-Ljbffr