Sr. Associate, Information Security (Security Architect)
Dorchester, MA

Job Description

Sr. Associate, Information Security (Security Architect)-1903110

Description

[POSITION SUMMARY] The Sr. Associate, Information Security serves in a technical capacity in evaluating and designing security solutions and works with technicians throughout the program in implementing, maintaining and constantly improving the information security practice while managing and maintaining our efforts in the areas of Information Security, Governance, Risk and Compliance. S/he provides patches and upgrades to existing systems, designs web-based, mobile technology, cloud, and security interface to meet the specific needs of users, prepares operating instructions, compiles documentation of program development, and analyzes system capabilities to resolve questions of program intent, output requirements, input data acquisition, programming techniques, and controls.[RESPONSIBILITY STATEMENTS]Acts as influencer of peers and management.,Acts as senior resource for incident response related activities. Collaborates with technical teams for security incident remediation and communication.,Allocates and prioritizes security resources efficiently within the organization managing both resources and budgets.,Analyzes and implements security solutions to meet customer requirements.,Conducts proof of concepts, vendor comparisons and recommend solutions in line with business requirements.,Conducts risk assessments to evaluate the effectiveness of existing controls and determine the impact of proposed changes to business processes, applications and systems.,Conducts security research on threats and remediation methods.,Contributes to strategic planning to evaluate, deploy or update security technologies.,Creates process improvement by identifying inefficiencies and solutions for process improvements.,Develops and maintains a set of operational and forward looking security metrics., Guides and confirms that the design has been implemented as per the requirements.,Interacts with partners as needed to explain work product, security techniques, methodology and results to ensure appropriate business value.,Oversees daily monitoring of security reports to identify issues and follow these issues to resolution.,Oversees management and deployment of security infrastructure including Vulnerability Management, WAF, Network Monitoring, Logging correlation, DDOS prevention and IPS/IDS.,Oversees security projects and the security testing of new and existing applications.,Prepares system security reports by collecting, analyzing, and summarizing data and trends; presents reporting for management review.,Promotes cross-department collaboration and communication to ensure appropriate processes, procedures and tools are installed, monitored, and effectively operating and alerting.,Provides direction and acts as an escalation point on projects and issues to other team members.,Provides technical security consulting support to address complex business and technology projects and requests.,Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations., Writes clear implementation guidelines for the implementation engineers.[ADDITIONAL RESPONSIBILITY STATEMENTS]Acts as a subject matter expert (SME) while providing leadership, guidance, and mentorship to other team members.

Qualifications

[EDUCATION] Bachelor's Degree; Computer Science or equivalent major.,or equivalent work experience; [WORK EXPERIENCE] 9-12 years; Experience in IT Security.,Experience with CheckPoint, Palo Alto, FireEye, Imperva, Security Center, Splunk.,Experience with managing enterprise security projects.,Experience with penetration testing.,Strong knowledge of PCI, SOX, ISO and NIST security standards.,Working as a security Architect. [LICENSE/CERTIFICATION] Vendor security certifications or project management certification, a plus [SKILLS AND ABILITIES] Ability to communicate concisely, effectively and directly to executive management,Ability to work cooperatively in a team environment,Demonstrated presentation development; tailors message as needed; comfortable presenting to all levels; strong writing skills; demonstrates creativity in articulating messages that support recommendations,Exceptional organizational skills and attention to detailbility to work cooperatively in a team environment,Experience planning, researching and developing security strategies, standards, and procedures,Knowledge of risk assessment tools, technologies, and methods,Proven ability to understand and analyze complex issues, then apply experience and judgment to develop sound recommendations especially as related to malware, eDiscovery, current threats/attacks and/or vulnerability management,Proven relationship building skills working with mid to senior level management and cross-functional teams; understands risks; additional focus on leadership; strong interpersonal skills; delivers precise, accurate results to meet commitments; mentors other team members,Strong understanding of security, incident response and/or networking/PC concepts [PHYSICAL DEMANDS] Minimal physical effort such as sitting, standing, and walking.

Job:Information Security

Primary Location:Massachusetts-Dorchester-2 Morrissey Boulevard - 06367 - Columbia Park

Organization:Technology (5900)

Schedule:Full-time

Job Posting:May 29, 2019, 2:28:14 PM

AN EQUAL OPPORTUNITY EMPLOYER M/F/Vet/Disabled/SO