What are the responsibilities and job description for the Security Architect position at LussoTech LLC?
Job Description
Job Description
Primary Job Responsibilities :
Provides technical advisement to project teams to ensure compliance with IT security processes and standards.
Ensure that security of the solutions / systems developed in support of the business are aligned with ConocoPhillips Enterprise Architecture, technical standards, and technology roadmaps.
Demonstrates either a wide breadth of security architectural experience across multiple technical domains (e.g. network security, identity security, endpoint security, cloud security) or is recognized as an expert in a specific domain.
Ensures security solutions will work together as a zero-trust fabric to achieve intended risk-based business outcomes.
Plays a critical role in pre-planning of new and existing security architectures
Interpret business needs and requirements when designing and developing technical security architectures to deliver the desired business capabilities
Leverages security architectural experience and expertise across a wide variety of technology domains including infrastructure, data management, systems integration, and application development, cloud, and endpoint
Collaborates between IT Security architecture colleagues for continuous learning and is curious to learn from peer architect colleagues for extending self-knowledge base
Performs an active role in Security Architecture Reviews as part of the Risk Assessment process
Basic Requirements
CISSP or CISM certification
7 years of experience IT Security Architecture and services
100% in-office
Preferred Requirements :
IT Security certifications such as TOGAF, CSSLP, SCRUM Master, SAFe Architect, Network Security, PCNSE, Wireless, IAM / ADM, Cloud (Cloud Solutions Architect Expert and Cloud Security Engineer Associate
12 years of security experience across multiple technical disciplines : API Management, Cloud Security Architecture, Identity Management / Multi-factor / Directory Services, Routers / switches, Firewalls / VPN client, VPN tunnels, Endpoint Security Tools, Operating System Best Practices, Cloud Management Gateway, Patching, Mobility, or Device Management (MDM)
Ability to research new solutions to document best practices to ensure they are implemented and documented as part of the IT Security Reference Architecture
Experience with Visio and / or similar architectural design systems
Advanced proficiency in authentication, authorization, and security policies
Advanced understanding of the practical ways to apply security standard methodologies in new situations
Advanced understanding Cloud best practices on leveraging the capabilities to secure by design
Intermediate knowledge of cloud security products as part of a cloud strategy
Intermediate knowledge of on-prem and cloud Directory Services, SSO, SAML, and MFA
Intermediate knowledge of network switches, routers, firewalls, DMVPN, S2S IPSEC VPN, and HTTPS client VPN
Basic awareness of SASE solutions to provide least privilege / RBAC access
Basic knowledge of OT systems as they pertain to the IE62443 for ICS Security
Takes ownership of actions and follows through on commitments by holding others accountable and standing up for what's right
Delivers positive results through realistic planning to accomplish goals
Builds effective solutions based on available information and makes timely decisions that are safe and ethical
Documentation skills through both whitepapers and architectural diagrams to present the pros and cons, risk evaluation, and business value for potential solutions
Perform security architecture design reviews to document solutions to be implemented to match best practices and set a standard for deviations and exceptions to be made
Merger and Acquisition experience
