Thursday, April 27, 2017

Infrastructure Security Architect

Infrastructure Security Architect
Exciting opportunity for an experienced IT infrastructure security architect to join one of the world's leading customer experience management software companies. In this role, you will be responsible for identifying security risks to global IT infrastructure, designing scalable security solutions, driving implementation and demonstrating effective risk mitigation to leadership. The role will be the technical subject matter expert on network security, system security, security monitoring and other infrastructure security related areas. You will also design & implement security controls within Docker container / Apache stack environment. Requires solid understanding of containerization & network segmentation within a software defined network. Requires strong Python scripting skills and good understanding of Docker.

Responsibilities include but are not limited to:
* Own the security of the technology stack supporting our SaaS applications, including
VMs, Docker containers, OS configuration, and networking
* Create secure configuration templates and network architecture standards, for our SaaS
offering as well as our corporate IT infrastructure
* Perform threat modeling to identify weaknesses, and provide remediation guidance
* Design and build security into next generation software-defined network, for both
on-prem and cloud environments
* Periodically and proactively assess system and network alignment with established
baselines and standards


Background / Experience requirements:
- Minimum of 5+ years of experience in technical infrastructure security related function
- Deep knowledge of the security aspects of microservices and associated technologies,
including Docker configuration, and distributed file systems (e.g., Ceph, NFS)
- Deep knowledge of authentication protocols, applied cryptography, PKI, and TLS
- Deep knowledge and experience in Unix, Linux and OS X
- Working knowledge of directory and distributed authentication/authorization technologies
(OpenLDAP, Active Directory, RADIUS, SAML, OAuth)
- Strong scripting skills (Perl/Python/Shell) and ability to write code for automation
- Experience in a technical security role with hands on experience in design and
implementation of network security, operating system security, vulnerability assessment
- Experience with customizing open source tools for enterprise deployment
- Experience with audits and certifications to regulations and standards like PCI DSS, SOC
2, ISO 27001:27002
Location:  Palo Alto, CA

Lauren Twisselman | Technical Recruiter The Armada Group - On Demand Talent Solutions
O: 408.520.9454 F: 831.515.5111  Skype ID: armada.lauren.twisselman