What are the responsibilities and job description for the Information Security Architect position at Nemours?
Nemours Children's Health is seeking an Information Security Architect to join our team in either Jacksonville, Florida, Orlando, Florida or Wilmington, Delaware. This is a hybrid position (both onsite and remote). This is an advanced and highly technical security position that will protect Nemours against Cyber Security threats.
The ideal applicant will have a passion for cloud security engineering, problem solving, troubleshooting complex issues, and working on security related projects.
The position requires the individual to possess skills related to implementing and configuring security tools and applications.
The primary function of this role is to implement cloud security tools and applications that detect and prevent cyber threats and ensure those systems are operating and functioning as designed.
This person should be a self-starter and good at creating documentation.
This individual will be required to work on operational technical issues and security incidents.
Additionally, this individual will train, coach, and mentor junior level analysts on cloud security best practices, operational procedures, and incident response.
- A strong technical skill set is required, as this role will become the subject matter expert in cloud security tools and technologies, including firewalls, intrusion detection / prevention systems, and encryption.
- Act as information security lead on cloud security projects (IaaS, PaaS, SaaS).
- Manage all aspects of Cloud-Native Application Protection Platform (CNAPP), Cloud security posture management (CSPM), and Cloud Workload Protection Platform (CWPP).
- Manage all aspects of SaaS Security Posture Management (SSPM).
- Integrate security tools and practices into the continuous integration / continuous delivery (CI / CD) pipeline.
- Understanding of secure coding practices and software development life cycle (SDLC).
- Act as liaison between applications teams.
- Evaluate products and development efforts for security weaknesses.
- Develop and implement high level technical strategies, detailed designs, and integrated solutions as well as hands-on third level troubleshooting of complex problems.
- Develop, present, and drive the implementation of internal and cross-functional integrated information security solutions.
- Evaluate, understand, and provide recommendations for new technologies as well as stay current with new functionality and features for existing security technologies.
- Lead cross department remediation of security incidents. Job Requirements
- Bachelor's Degree required..
- Minimum of 1 year of hands on experience securing Azure, AWS, or GCP required.
- CISSP, CCSP, Microsoft SC-100, Microsoft AZ-500, AWS Certified Security, or equivalent preferred. #LI-EP1
