Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.
Vakante Jobangebote finden Sie unter Projekte.
Security Architect
Eingestellt von Apollo Solutions Ltd
Gesuchte Skills: Design, Jira, Java, Library
Projektbeschreibung
We have an exciting opportunity for a Security Architect to join the biggest and most successful telecom business in Belgium.
This is a long term assignment for thge right candidate so is a rare opportunity at this level:
Key Functions of the Role
*Ensurance that all security, functional and non-functional requirements are covered for all tracks in compliance to the Target Security Reference Enterprise Architecture and Target Enterprise Architecture.
*Extensions and evolution of the principlesthis will be managed by track's teams according to DevOps principles or existing shared competence centres.
*The design and setup of the common API Management layers and related assets including the corresponding API Governance (Functional, Information, etc.) which will be provided to the different business capabilities teams within the different tracks so they are able to securely expose their APIs.
*The design and setup of Data Governance solutions (full DAMA-wheel based) which will be provided to the different business capabilities teams within the different tracks so they are able to exchange different types of data between business capabilities.
*The training/coaching to the different track solution architects on how to apply the proven architectural patterns/principles from a developed, documented library of secure reference implementation for Solutioning implementations.
*Input towards reusable architectural pattern reference implementations and governances compliant with the Enterprise Architectures during tracks implementations and productize them under Track 6 for reuse in (other) tracks.
*Support to process design for business processes, along adoption of tools upon need.
Track 6 Security Architect Job Description:
As Security Architect you design the correct security controls for Application, Infrastructure and Data layers, based on the requirements and policies. You elaborate the integration with IAM and other security components in the landscape. You do this both for own development as well as commercial packages on-premise or in the cloud. You have a keen eye for information risks and can propose remediation and/or mitigating controls with a pragmatic approach (roadmap) in a SAFE (Agile/SCRUM/XP) way of working.
As an E2E Technical Security Architect you are responsible for:
*The analysis and review of the existing IT-environment, starting from OOTB packages
*Supporting the Product Owners (business analysts) with the definition of the non-functional requirements (NFR's with focus on security)
*Validation and/or creation of the solution architecture that conforms with the requirements. You do this in close cooperation with and support of Technology Experts, Security Officers and Security Governance.
*Validating the application design, implementation and integration throughout the Software Delivery LifeCycle (CI/CD).
*Aligning the solutions with the enterprise and reference architecture
*Pointing out information risks and vulnerabilities with regards to confidentiality, integrity and availability. You will also propose and design remediation and mitigating controls.
*Following-up of the realisation by the expert teams and delivery squads
*Supporting other Enterprise, Security, track and/or solution architects
*Documenting the architectural actions (JIRA) and decisions
The following skills are critical to successful performance in this role, and must be proven:
1.Required experience:
a.You have a master degree or similar experience
b.Experience in the various security domains is a must; knowledge of TOGAF, OWASP and/or SABSA is a plus, especially in the application development space or PaaS/SaaS cloud offerings, including security aspects related to different development languages and frameworks, SOA, API, µservices,
c.You have experience in the identification and remediation of risk and vulnerabilities in IT solutions (OOTB packages), eg based on (White Box) pentesting
d.You are a conceptually strong thinker
e.You design solutions taking into account the requirements of the customer and the risks to the organization
f.You are able to take decisions in complex situations
g.You are goal-oriented and have an eye for quality
2.Soft skills:
a.Communication via verbal and written documentation and presentations. You're a fluent communicator and can convince people of your ideas thanks to your social and communication skills
b.Change management (culture change & transition management)
c.Problem-solving based on common-sense for impact, priority and urgency
d.Stress and conflict handling. You're a problem-solver that focusses on simplicity and efficiency
3.Technical Skills:
a.You are open to new technologies and trends
b.SAFe/Agile/SCRUM/XP and TDD in a DevOps context with best practices
c.Integration Architecture, solution design of security implementations
d.Software development skills (J2EE in several containers, with focus on HTTPS SOAP)
e.Infrastructure & Middleware components (LDAP/ADFS, CASB, Mobile Device Management, )
f.Strong skills on NFRs
g.Knowledge and experience with RSA Archer is a plus
Other EXCITE Resources to work with:
1.Scrum Masters
2.Product Owners (Epics, User Stories, use cases)
3.Project/Solution Architects
4.Security, infrastructure and network specialists
5.Security Specialists
6.(Lead) JAVA developers
7.Testers
Please apply today for an immediate review.
This is a long term assignment for thge right candidate so is a rare opportunity at this level:
Key Functions of the Role
*Ensurance that all security, functional and non-functional requirements are covered for all tracks in compliance to the Target Security Reference Enterprise Architecture and Target Enterprise Architecture.
*Extensions and evolution of the principlesthis will be managed by track's teams according to DevOps principles or existing shared competence centres.
*The design and setup of the common API Management layers and related assets including the corresponding API Governance (Functional, Information, etc.) which will be provided to the different business capabilities teams within the different tracks so they are able to securely expose their APIs.
*The design and setup of Data Governance solutions (full DAMA-wheel based) which will be provided to the different business capabilities teams within the different tracks so they are able to exchange different types of data between business capabilities.
*The training/coaching to the different track solution architects on how to apply the proven architectural patterns/principles from a developed, documented library of secure reference implementation for Solutioning implementations.
*Input towards reusable architectural pattern reference implementations and governances compliant with the Enterprise Architectures during tracks implementations and productize them under Track 6 for reuse in (other) tracks.
*Support to process design for business processes, along adoption of tools upon need.
Track 6 Security Architect Job Description:
As Security Architect you design the correct security controls for Application, Infrastructure and Data layers, based on the requirements and policies. You elaborate the integration with IAM and other security components in the landscape. You do this both for own development as well as commercial packages on-premise or in the cloud. You have a keen eye for information risks and can propose remediation and/or mitigating controls with a pragmatic approach (roadmap) in a SAFE (Agile/SCRUM/XP) way of working.
As an E2E Technical Security Architect you are responsible for:
*The analysis and review of the existing IT-environment, starting from OOTB packages
*Supporting the Product Owners (business analysts) with the definition of the non-functional requirements (NFR's with focus on security)
*Validation and/or creation of the solution architecture that conforms with the requirements. You do this in close cooperation with and support of Technology Experts, Security Officers and Security Governance.
*Validating the application design, implementation and integration throughout the Software Delivery LifeCycle (CI/CD).
*Aligning the solutions with the enterprise and reference architecture
*Pointing out information risks and vulnerabilities with regards to confidentiality, integrity and availability. You will also propose and design remediation and mitigating controls.
*Following-up of the realisation by the expert teams and delivery squads
*Supporting other Enterprise, Security, track and/or solution architects
*Documenting the architectural actions (JIRA) and decisions
The following skills are critical to successful performance in this role, and must be proven:
1.Required experience:
a.You have a master degree or similar experience
b.Experience in the various security domains is a must; knowledge of TOGAF, OWASP and/or SABSA is a plus, especially in the application development space or PaaS/SaaS cloud offerings, including security aspects related to different development languages and frameworks, SOA, API, µservices,
c.You have experience in the identification and remediation of risk and vulnerabilities in IT solutions (OOTB packages), eg based on (White Box) pentesting
d.You are a conceptually strong thinker
e.You design solutions taking into account the requirements of the customer and the risks to the organization
f.You are able to take decisions in complex situations
g.You are goal-oriented and have an eye for quality
2.Soft skills:
a.Communication via verbal and written documentation and presentations. You're a fluent communicator and can convince people of your ideas thanks to your social and communication skills
b.Change management (culture change & transition management)
c.Problem-solving based on common-sense for impact, priority and urgency
d.Stress and conflict handling. You're a problem-solver that focusses on simplicity and efficiency
3.Technical Skills:
a.You are open to new technologies and trends
b.SAFe/Agile/SCRUM/XP and TDD in a DevOps context with best practices
c.Integration Architecture, solution design of security implementations
d.Software development skills (J2EE in several containers, with focus on HTTPS SOAP)
e.Infrastructure & Middleware components (LDAP/ADFS, CASB, Mobile Device Management, )
f.Strong skills on NFRs
g.Knowledge and experience with RSA Archer is a plus
Other EXCITE Resources to work with:
1.Scrum Masters
2.Product Owners (Epics, User Stories, use cases)
3.Project/Solution Architects
4.Security, infrastructure and network specialists
5.Security Specialists
6.(Lead) JAVA developers
7.Testers
Please apply today for an immediate review.
Projektdetails
Geforderte Qualifikationen
-
Kategorie:
IT Entwicklung, Medien/Design