Cyber Security Engineer (Security Architecture) Qualcomm
San Diego, CA

Job Description

Job Detail

Job IdN1969126Job TitleCyber Security Engineer (Security Architecture) Post Date01/11/2019Company-DivisionQualcomm Incorporated-Information Technology

Job AreaInformation Technology

LocationCalifornia - San Diego

Job Overview

Your primary responsibilities will be:

designing, analyzing, and validating architectural solutions and implementations, creating secure architectural patterns for both enterprise and cloud environments, and helping to find and highlight opportunities for broad or systemic improvements. You will be a security evangelist, driving company-wide environment hardening initiatives and representing the information security group throughout Qualcomm.

We are a collaborative team

that is always learning, sharing, and researching. You will work with specialists and generalists across information security domains regularly, with a focus on cross-training with our red and blue teams. You must have broad expertise in Information Security or related fields, strong technical writing, analytical, and interpersonal skills, and the ability to learn and grow in a rapidly evolving environment.

While we are looking for people

who have all of the skillsets outlined in this posting, we also recognize that this is very rare. So, if you can learn these things, and you have a desire to dig in to areas you havent explored yet, this is the position for you.

Responsibilities:

Partner with IT and business units to conduct security assessments, address findings, and validate adherence to security guidanceEvangelize security within Qualcomm and drive company-wide environment hardening initiativesProvide security recommendations on existing and new application, system, and network architecturesEstablish alternative security measures to allow for business continuity while protecting the company's assetsDevelop and advice on best practices around cloud platformsTrack data security findings to closure in a timely manner by partnering with business units, communicating solutions, and verifying remediationPerform risk analysis for corporate functional & technical areas and 3rd party providers relevant to data securityAct as a mentor and provide guidance and technical leadership to other staff members" id="hdnJobOverview" />Your role as a member of the security architecture team is to protect Qualcomm from compromises such as data breaches, hacking attempts, targeted and insider threats, and other forms of cyberattacks.

Your primary responsibilities will be:

designing, analyzing, and validating architectural solutions and implementations, creating secure architectural patterns for both enterprise and cloud environments, and helping to find and highlight opportunities for broad or systemic improvements. You will be a security evangelist, driving company-wide environment hardening initiatives and representing the information security group throughout Qualcomm.

We are a collaborative team

that is always learning, sharing, and researching. You will work with specialists and generalists across information security domains regularly, with a focus on cross-training with our red and blue teams. You must have broad expertise in Information Security or related fields, strong technical writing, analytical, and interpersonal skills, and the ability to learn and grow in a rapidly evolving environment.

While we are looking for people

who have all of the skillsets outlined in this posting, we also recognize that this is very rare. So, if you can learn these things, and you have a desire to dig in to areas you havent explored yet, this is the position for you.

Responsibilities:

Partner with IT and business units to conduct security assessments, address findings, and validate adherence to security guidanceEvangelize security within Qualcomm and drive company-wide environment hardening initiativesProvide security recommendations on existing and new application, system, and network architecturesEstablish alternative security measures to allow for business continuity while protecting the company's assetsDevelop and advice on best practices around cloud platformsTrack data security findings to closure in a timely manner by partnering with business units, communicating solutions, and verifying remediationPerform risk analysis for corporate functional & technical areas and 3rd party providers relevant to data securityAct as a mentor and provide guidance and technical leadership to other staff membersAll Qualcomm employees are expected to actively support diversity on their teams, and in the Company.Minimum Qualifications

5+ years experience in IT, Cyber Security, or related area.

3+ year experience with Programming Language such as C, C++, Java, etc.

3+ years experience with network monitoring software such as Nagios, Wireshark, Snort, etc.

4+ years experience in software and/or application testing (e.g., creating test cases and prototype environments, QA, software or application testing).

2+ years leadership role in projects/programs.

" id="hdnMinimumQualifications" />Bachelor's degree in Information Systems, Engineering, Computer Science, Mathematics or related field:

5+ years experience in IT, Cyber Security, or related area.

3+ year experience with Programming Language such as C, C++, Java, etc.

3+ years experience with network monitoring software such as Nagios, Wireshark, Snort, etc.

4+ years experience in software and/or application testing (e.g., creating test cases and prototype environments, QA, software or application testing).

2+ years leadership role in projects/programs.

Preferred Qualifications

5+ years of experience cyber security experience in the following areas:NetworkingWeb applicationsCryptography fundamentalsOS HardeningIAM Priciples / Authentication and AuthorizationBasic scripting and automating capabilitiesCommon operating systems and business application platforms including an understanding of their enterprise architecture and integration patternsAdvanced IAM concepts such as federation, FIDO, and Active Directory internalsExperience with major enterprise mergers, acquisitions, and integrationsHands-on experience with major cloud environments (AWS, Azure, etc.)Best-practices and considerations around software containerization platforms such as DockerUnderstanding of configuration management concepts and solutionsExperience with database fundamentals and security best practicesFamiliarity with security frameworks such as OWASP, NIST CSF, etc.Current programming skills in Python, Powershell, .NET, Java, C, or C++Offensive skillsets (network/app exploitation, privesc, etc)1+ years leadership role in projects or programs" id="hdnPreferredQualifications" />2+ years experience developing and/or assessing IT architectural designs

5+ years of experience cyber security experience in the following areas:NetworkingWeb applicationsCryptography fundamentalsOS HardeningIAM Priciples / Authentication and AuthorizationBasic scripting and automating capabilitiesCommon operating systems and business application platforms including an understanding of their enterprise architecture and integration patternsAdvanced IAM concepts such as federation, FIDO, and Active Directory internalsExperience with major enterprise mergers, acquisitions, and integrationsHands-on experience with major cloud environments (AWS, Azure, etc.)Best-practices and considerations around software containerization platforms such as DockerUnderstanding of configuration management concepts and solutionsExperience with database fundamentals and security best practicesFamiliarity with security frameworks such as OWASP, NIST CSF, etc.Current programming skills in Python, Powershell, .NET, Java, C, or C++Offensive skillsets (network/app exploitation, privesc, etc)1+ years leadership role in projects or programsEducation RequirementsPreferred: Master's, Computer Science or equivalent experience

Preference given to candidates with applicable certifications from organizations such as Offensive Security, SANS, etc.

" id="hdnEducationalRequirements" />Required: Bachelor's degree in Information Systems, Engineering, Computer Science, Mathematics or related field

Preferred: Master's, Computer Science or equivalent experience

Preference given to candidates with applicable certifications from organizations such as Offensive Security, SANS, etc.

Keywordsarchitect, security architecture, risk assessment, compensating control, pattern, cloud, threat modeling, network security, cyber security risk framework, access control, cryptography, hardening