What are the responsibilities and job description for the Senior Security Architect position at iFlow Inc.?
Senior Security Architect/Engineer
We are seeking a highly skilled Senior Security Architect/Engineer to design, implement, and maintain robust security solutions across our organization. The ideal candidate will possess a deep understanding of cloud security, threat detection, and response, as well as a strong foundation in offensive security and regulated Manufacturing Execution Systems. This role requires a combination of technical expertise and strategic thinking to protect our critical assets and ensure business continuity.
Responsibilities
Must Have:
Architectural Design And Implementation
Architectural Design and Implementation:
We are seeking a highly skilled Senior Security Architect/Engineer to design, implement, and maintain robust security solutions across our organization. The ideal candidate will possess a deep understanding of cloud security, threat detection, and response, as well as a strong foundation in offensive security and regulated Manufacturing Execution Systems. This role requires a combination of technical expertise and strategic thinking to protect our critical assets and ensure business continuity.
Responsibilities
Must Have:
Architectural Design And Implementation
- Lead/conduct vulnerability assessments, penetration testing, and red/purple teaming exercises.
- Experience in Conduct penetration testing using tools like Metasploit and Kali Linux.
- Experience Assess system vulnerabilities using Nessus, Rapid 7 and/or other open source tools
- Experience in red and purple teaming exercises.
Architectural Design and Implementation:
- Design and implement robust Identity and Access Management (IAM) and Role-Based Access Control (RBAC) models.
- Implement threat detection and response capabilities using SIEM, SOAR, EDR, and XDR platforms.
- Ensure network security through the effective use of firewalls, IPS, VPNs, and network traffic analysis tools.
- Proficient in Automate security tasks and incident response using scripting languages (Python, PowerShell).
- Experience in Implement data security measures, including data loss prevention (DLP) and encryption.
- SME in Deploy and manage SIEM and SOAR platforms (Sentinel, Falcon FDR, Demisto).
- SME Utilize EDR and XDR solutions (CrowdStrike, Defender) for endpoint protection.
- Proficient Analyze network traffic using tools like Wireshark and Tcpdump.
- Proficient Leverage threat intelligence platforms (TIS) to stay informed of emerging threats.
- Collaborate with the Security Operations Center (SOC) to enhance detection and response capabilities.
- Automate incident response tasks using Python and PowerShell and/or AI Agents.
- Deep understanding on how to secure/ manage enterprise-grade network infrastructure for both on-prem and cloud-based firewalls.
- Deep understanding on various load balancers stacks (ALB, ELB, Nginx) and Web Application Firewalls (WAFs).
- Proficient Implement data loss prevention (DLP) and encryption technologies.
- Knowledgeable of security frameworks (NIST, ISO 27001, PCI DSS, HIPAA, GDPR).
- Knowledge of preferred experience with FDA GxP regulations.
- Knowledgeable in Conduct gap assessments and develop remediation plans.
- Manage multiple security projects simultaneously.
- Effectively communicate with stakeholders and internal customers.
- At least 7 years of experience in IT with a focus on Cyber Security and Cloud security services.
- CISSP certification is mandatory. Additional certifications ( AWS/Azure Certified Security Specialist) preferred.
- Strong understanding of networking, cryptography, and security protocols.
- Exceptional analytical skills, problem-solving abilities, and attention to detail.
