Principal, Security Architecture

Category: Technology
Location: Alpharetta, GA
Job ID: 11619
Posted Date: February 11, 2019

More than 30 years ago, E*TRADE pioneered the online brokerage industry by executing the first-ever electronic individual investor trade. While the landscape of our industry has changed dramatically, our culture of innovation and drive to make online trading accessible to everyone continues to drive us forward. We believe in challenging the status quo, fostering an environment of curiosity and learning, and, above all, putting our customers first.

RESPONSIBILITIES

The Security Architect plays an integral role in defining and assessing the organization’s security strategy, architecture and practices. The security architect will be required to effectively translate business objectives and risk management strategies into specific security processes enabled by security technologies and services.

WHAT YOU WILL BE DOING:
  • Develop and maintain a security architecture process that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology and threat drivers
  • Develop security strategy plans and roadmaps based on sound enterprise architecture practices
  • Develop and maintain security architecture artifacts (e.g., models, templates, standards and procedures) that can be used to leverage security capabilities in projects and operations
  • Track developments and changes in the digital business and threat environments to ensure that they’re adequately addressed in security strategy plans and architecture artifacts
  • Participate in infrastructure projects to provide security-planning advice
  • Ensure a complete, accurate and valid inventory of all systems, infrastructure and applications that should be logged by the security information and event management (SIEM) or log management tool
  • Establish a taxonomy of indicators of compromise (IOCs) and share this detail with other security colleagues, including the security operations center (SOC), information security managers and analysts, as well as counterparts within the network operations center (NOC)
  • Validate IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable
  • Validate security configurations and access to security infrastructure tools, including firewalls, IPSs, WAFs and anti-malware/endpoint protection systems
  • Review network segmentation to ensure least privilege for network access
  • Review security technologies, tools and services, and make recommendations to the broader security team for their use, based on security, financial and operational metrics
  • Coordinate with operational and facility management teams to assess the security of operational technology (OT) and Internet of Things (IoT) systems
  • Liaise with other security architects and security practitioners to share best practices and insights

REQUIREMENTS
WHAT YOU HAVE (REQUIRED EXPERIENCE):
  • 8+ years direct, hands-on experience or strong working knowledge of managing security infrastructure — e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology and,
  • 8+ years having Full-stack knowledge of IT infrastructure:
    • Applications
    • Databases
    • Operating systems — Windows, Unix and Linux
    • Hypervisors
    • IP networks — WAN and LAN
    • Storage networks — Fibre Channel, iSCSI and NAS
    • Backup networks and media
  • 2+ years of experience working with the methodologies to conduct threat-modeling exercises on new applications and services.
  • 2+ years of experience in the following areas:
    • IT service management (e.g., ITIL-related disciplines):
    • Change management
    • Configuration management
    • Asset management
    • Incident management
    • Problem management
  • Bachelors or master’s degree in computer science, information systems, cybersecurity, or a related field.
EVEN BETTER IF YOU HAVE (PREFERRED EXPERIENCE):
  • 5+ years of the following:
    • Experience in using architecture methodologies such as SABSA, Zachman and/or TOGAF
    • Direct, hands-on experience or a strong working knowledge of vulnerability management tools
    • Direct experience designing IAM technologies and services:
    • Active Directory
    • Lightweight Directory Access Protocol (LDAP)
    • Amazon Web Service (AWS) IAM

Business Related Skills

  • Strategic planning skills
  • Communication skills
  • Financial analysis skills
  • Project management skills
Certificates:
CISSP, CISM, CISA, or other industry recognized certificates are highly desired.

We offer a competitive and comprehensive benefits package. Please visit https://www.etradecareers.com/why-work-at-etrade/employee-benefits/ to learn more about the opportunities.

E*TRADE Financial is an Equal Opportunity Employer who encourages diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, national origin, religion, sex, age, disability, citizenship, marital status, sexual orientation, gender identity, military or protected veteran status, or any other characteristic protected by applicable law.

Upcoming E*TRADE career events

There are no upcoming events at this time.