*POSITION- Security Solutions and Design lead* <https://gbams.tcs.com/gbams/vendorPages/displayRequirement.jsf>*LOCATION- Syracuse (NY)*
*Duration – long term * - 7+ or more years in system security, administration or information management experience - End-to-end understanding of the software development lifecycle - Familiarity with security industry standards (ISO 17799, ISO 27001/2, ISO 31000, NIST 800 series, etc.) - Experience with internal controls, risk assessments, business process and internal IT control testing - Influencing experience at senior levels (CISO, CTO’s) within an organization - Industry experience in financial services, insurance, high-tech, and /or healthcare preferred - Demonstrated ability to integrate various security & data protection technologies and controls into a cohesive architecture that sufficiently mitigates risk to the company - Deep technical understanding of and experience with security technologies including, but not limited to, intrusion detection/prevention, event correlation, firewall, antivirus, anti spam, policy enforcement, patch/configuration management, audit, application whitelisting, secure application development, etc. - Thorough understanding of the security controls provided in common platforms and applications in the corporate environment including, but not limited to, Unix, Linux, Windows, IBM Mainframe (zTPF, MVS), MS SQL, Server Microsoft Outlook, etc. - Experience in data exfiltration techniques and detection and response tools and strategies - Experience with designing and implementing secure networks. - Experience with secure data communications and applications. - Experience with virtualization technologies. - Comfort working across multiple computing platforms. (Windows, AS/400, zOS) - Knowledge of SANS 20 critical controls framework and other security frameworks and regulations (HITRUST, NIST, ISO, HIPAA). · * Interacts with Application team members to champion and ensure application-level security with the Enterprise Security Architecture. · * Interacts with Global Security to ensure alignment with the Global Security Policy and Standards direction · * Interacts with Infrastructure Services to ensure network/infrastructure security · * Interacts with Compliance department to ensure regulatory requirements are met · * Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members. · * Determines security requirements by adhering to Global and Industry security standards; assisting with system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates. · * Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs. · * Upgrades security systems by monitoring the current security environment (industry); identifying security gaps; evaluating and implementing enhancements. · * Prepares system security reports by collecting, analyzing, and summarizing data. · * Translate business and IT security and privacy requirement to solution designs and implementation plans · * Develop information security technology roadmaps. · * Designing & implementing secure data architectures and security monitoring and reporting structures. - * Regards,* *Atul Sharma* IT -recruiter a...@idctechnologies.com <ashw...@idctechnologies.com> Direct: 408.418.5778 <(408)%20418-5778> EXT 3027
