IoT Security Architect

Raleigh, NC

Company Name :IBA Infotech LLC

Type : Contract

Primary Skills : NIST, CSA, OWASP, GSMA

Location : Raleigh

CTC : DOE

Job Description:

Responsibilities include:

  • Design and develop security architectures for IoT solutions on cloud and cloud/hybrid based systems. Possess a firm understanding of the offerings within SoftwareAG, Amazon Web Services (AWS) Greengrass and the Microsoft Azure platforms. Based on business requirements, design and implement cloud-native architectures and designs that will allow those requirements to be met with a minimal degree of risk to organization and with appropriate security controls present.
  • Represents Security Platform in development and implementation of the IoT solution cloud architecture. Acts as the ambassador and senior technical representative for IoT solution security while engaging with other senior technical leaders throughout an organization in design and implementation of IoT solutions on cloud and cloud/hybrid based implementations.
  • Leads initiatives designed to share knowledge across security platforms and/or technology teams. Identifies, recommends, coordinates, deliver timely knowledge to support teams regarding technologies, processes or tools. Develops and executes strategies to increase IoT security knowledge throughout the business group.

Position Requirements:

  • Undergraduate degree in a business or technical field; post-graduate degree is a plus.
  • 7+ years’ experience with security architect and/or Cloud security.
  • In depth knowledge of IoT and Cloud Security Standards, frameworks and guidelines, e.g. NIST, CSA, OWASP, GSMA, IoTSF, FTC
  • Two or more of the following security certifications: CCSK - Certificate of Cloud Security Knowledge (CSAA), CCSP - Certified Cloud Security Professional (ISC2), Cloud+ (CompTIA), AWS Certified Solutions Architect (Amazon), Google Certified Professional Cloud Architect (Google), Professional Cloud Security Manager (EXIN), CISCS - Certified Integrator Secure Cloud Services (EXIN) or non-cloud related security certifications - CISSP, CSSLP , CISM, CISA, SANS GIAC, CGEIT, CRISC, GSEC.
  • Thorough knowledge on security scan test tools including SAST, DAST, Fuzzing, Pentest and Vulnerabilities testing.
  • 5+ years’ experience with Cloud platforms such as Amazon Web Services (AWS), Azure, VMware, Nutanix etc.
  • Experience architecting solutions within Amazon Web Services (AWS), Azure, VMware NSX.
  • Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development) , application security, data protection, cryptography, x509, TPM, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environments.
  • Experience in hardening cloud environments and OS instances based on CIS Benchmarks.
  • Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc).
  • Experience with deployment orchestration, automation, and security configuration management (Jenkins, Puppet, Chef, etc) preferred.
  • Experience with service-oriented architecture for cloud-based services.
  • Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies.
  • Experience with enterprise applications (architecture, development, support, and troubleshooting).
  • Experience performing threat modeling and design reviews to assess security implications and requirements for introduction of new technologies.
  • Intangibles
  • Demonstrated ability to work in a highly dynamic, fast paced environment and across organizational and geographies;
  • Global experience; demonstrated ability to work with and across cultures.
  • Strong written and verbal communication skills.
  • Experience representing technical viewpoints to diverse audiences and in making timely and prudent technical risk decisions.
  • Experience with enterprise architecture and working as part of a cross-functional team to implement solutions.
  • Strong interpersonal and communication skills; ability to work in a team environment
  • Ability to work independently with minimal direction; self-starter/self-motivated