Hi,
I hope you are doing well. I do have new requirement please go through it if you are comfortable send me updated resumes at [email protected] Job Title:* Information Security Architect* *Location:* *Shelton, CT (Local only)* Duration*: **06 Months * *Interview: *Phone followed by *in-person* - (No Skype) NOTE: *F2F Mandatory, LOCAL Candidates Only* Description: *DUTIES AND RESPONSIBILITIES:* · Develop and execute on Information Security Roadmap that includes practices, policies, standards, documentation and risk assessment. · Establish, maintain and monitor a comprehensive information security program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization. · Drive information security projects and enhancements to adapt to existing, changing and emerging information security threats. Mitigate threats and risks as identified by risk assessments and audits. · Perform information security risk assessments and coordinate the performance of 3rd-party internal and external network and systems vulnerability assessments. · Develop, maintain and manage the incident response plan, lead incident responses and investigations of security breaches, and assist with disciplinary and legal matters associated with such breaches as necessary · Collaborate with Human Resources on information security awareness training programs for employees, contractors and approved system users. · Facilitate audits and examinations by regulatory agencies. Create risk mitigation plans for audit findings and track the plans to completion. · Lead strategic security planning with IT management, Risk Management and users across the organization. · Work directly with business units to facilitate IT risk analysis and risk management processes; identify acceptable levels of risk, and establish roles and responsibilities with regard to information classification and protection. · Maintain awareness of changing and emerging information security and cyber security threats, and provide subject matter expertise to executive management on a broad range of information security topics and standards. · Consult with senior engineers, data architects, and developers to ensure effective security is achieved across the SDLC. · Provide guidance and input to technical reviews of proposed projects, services and vendors. · Coordinate use of external resources involved in the information security program including, information security service providers, physical security service providers, and consultants. · Develop business-relevant metrics to measure the efficiency and effectiveness of the information security program, facilitate appropriate resource allocation and increase the maturity of the security program. · Oversee the management and monitoring of layered security controls such as firewalls, NAC, IDS/IPS, AV, DLP, SIEM, MFA and others. · Provide support and governance for enterprise security projects · Provide support and security-related information as needed to business unit stakeholders *SKILLS AND REQUIREMENTS:* · Bachelor’s reuired, Master’s degree preferred, in Computer Science, MIS, or related field of study.A minimum of 10 years in a Security Architect and/or Security Engineer role. · Excellent understanding of cloud security and experience with design and/or implementation of applications in the cloud; Understanding of cloud deployment models: Private Cloud, Public Cloud, Hybrid Cloud; Cloud service models: Infrastructure as a service (IaaS), Platform as a service (PaaS) and Software as a service (SaaS); implementation of relevant controls to ensure Confidentiality, Integrity and Availability of confidential data · Experience in disciplines such as audit, security, risk, privacy, IT governance, business continuity management, or compliance. · Experience and expertise in CIRT, CERT and/or SOC Teams. · Experience in the architecture, design and implementations of network security solutions in a multi-tiered web based environments and legacy systems. · Expertise in SDLC and application security and best practices. · Expertise in Data, Firewall, Network, virtualization, security and hardening, Active Directory, and Vulnerability Management, storage, network and other technologies associated with system security. · Expertise and hands-on experience with Vulnerability Management Solutions, DLP technology, SIEM and Centralized auditing and logging applications / tools. · Industry knowledge of PKI, Directory Services, Federation Services, Identity management and Edge Security · Experience with creating and implementing internal controls, risk assessments, business process and internal IT control testing. · Experience defining and implementing cloud security with solid understanding of best practices · Experience with security industry standards SAE 16 or ISO 27001/2. · CISSP, SSCP or CCSP Certifications a plus. Thanks & Regards, Soni Technical Recruiter Nityo Infotech Corp. 666 Plainsboro Road, Suite 1285 Plainsboro, NJ 08536 *Email : *[email protected] <[email protected]> Phone: 609-378-1165 *http://www.nityo.com* <http://www.nityo.com/> USA | Canada | India | Singapore | Malaysia | Indonesia | Philippines | Thailand | UK | Australia / Zealand __________________________________________________________________________________________ Nityo Infotech has been rated as One of the top 500 Fastest growing companies by INC 500 __________________________________________________________________________________________ Disclaimer: *http://www.nityo.com/Email_Disclaimer.html <http://www.nityo.com/Email_Disclaimer.html>* -- You received this message because you are subscribed to the Google Groups "USITCV" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/usitcv. For more options, visit https://groups.google.com/d/optout.
