This job has expired, please see additional jobs below
Security Architect
Pearson
San Antonio, TX, United States
Job Details - this job has expired, please see similar jobs below
Description
At Pearson, we’re committed to a world that’s always learning and to our talented team who makes it all possible. From bringing lectures vividly to life to turning textbooks into laptop lessons, we are always re-examining the way people learn best, whether it’s one child in our own backyard or an education community across the globe. We are bold thinkers and standout innovators who motivate each other to explore new frontiers in an environment that supports and inspires us to always be better. By pushing the boundaries of technology — and each other to surpass these boundaries — we create seeds of learning that become the catalyst for the world’s innovations, personal and global, large and small.
Role purpose
• The Security Architecture team is responsible for the definition of security reference architectures that provide roadmaps and target state architectures for key security domains such as IdAM, Cloud, Network, Data Privacy, Bi-Modal IT, and many more. In addition to defining reference architectures, the Security Architecture team functions as a leader across the organization, helping to evangelize the security story and drive a culture of ‘secure by design’ into the Pearson environment and across all its products.
• Within this team, the Security Architect is responsible for reviewing technology designs, and designing security controls and solutions, to reduce the risk to Pearson and its customers. They will help define the information security architecture and design for the enterprise. This is an expert/lead technical role
Responsibilities
As a direct report to the VP, Security Engineering and Architecture, you will have the following accountabilities:
• Work closely with enterprise architects, other functional-area architects, engineering, and security specialists to ensure adequate security solutions and controls are in place throughout all IT systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements;
• Assess and understand Pearson’s current security posture and future architecture, providing recommendations for improvement and risk reduction;
• Develop the business, information, and technical artifacts that constitute the enterprise information security architecture and solutions;
• Serve as a security expert in application development, database design, network and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices;
• Contribute to the alignment of security governance with EA governance and project development lifecycle (PDLC);
• Researches, designs, and advocates new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners, and vendors;
• Contributes to the development and maintenance of the information security strategy;
• Evaluates and develops secure solutions, based on approved security architectures;
• Analyzes business impact and exposure, based on emerging security threats, vulnerabilities and risks;
• Communicates security risks and solutions to business partners and IT staff;
• Design security configuration guideline for information technology devices and systems, as well as mechanisms for assessing compliance with the guidelines;
• Design and build controls to address security risks and events as identified;
• Embrace a culture of continuous service improvement and service excellence; and
• Stay up to date on security industry trends.
Skills and Experience
Experience
• 9 years+ in Information Security space;
• Strong experience with security strategy, with a passion to make security realistic, achievable and interwoven with the business fabric;
• Strong experience with a broad range of security technologies, including NextGen Firewalls, DLP, NAC, IDS/ IPS, IdAM, Certificate Management, SIEM, Endpoint Protection, Anti-malware, vulnerability management;
• Strong oral, written, and presentation abilities - able to convey risk to all levels of the business, from C-level executives to operations and development teams;
• Strong experience in migrating enterprise companies from traditional data center infrastructure, application and data designs to hybrid or fully-cloud enabled practices.
• Strong experience with cloud provider ecosystems, including Amazon AWS, Microsoft Azure, and OpenStack.
• Some experience with Unix/Linux and Windows system administration;
• Some experience with logging and alerting platforms, including SIEM integration;
• Some proven ability in security process and organizational design;
• Current understanding of Industry trends and emerging threats; and
• Knowledge of incident response methodologies and technologies.
Desirable
• Well-rounded background in network, host, database, and application security;
• Formal training in and experience using an enterprise architecture methodology (for example, the Zachman Framework or TOGAF);
• Knowledge and experience using SABSA methodology;
• Experience implementing security controls in a bi-modal IT environment;
• Experience driving a culture of security awareness;
• Experience administering network devices, databases, and/or web application servers; and
• Professional IT Accreditations (CISM, CCSA, CCSE, JNCIA, CCNA, CISSP, CCIE Security).
Competences and Behaviours
• Customer orientated
• Working within an international environment
• Builds networks with customers, other team members and other relevant teams is essential
• Keeps all relevant people appropriately informed
• Very good communications, presentation and negotiations skills
• Technically innovative
• Able to express technical and non-technical concepts in clear verbal and written English
• Very good written skills to document complex concepts in a comprehensive, yet readable manner
• Encourages people to be open and share their views
• Considers a range of options that meet the needs of all stakeholders
• Ability to use own initiative to solve technical problems
• Delivery Focused
• Takes responsibility for targets
• Drive efficacy into all solutions delivered, demonstration clear and measurable results through the development of KPIs
• Ambitious and competitive
• Drive innovation and best practice
• Strive for standardisation and simplification in all aspects of work
• Always cost conscious balancing the needs of the business against the provision of the best solutions possible
Qualifications
Skills and Experience
Experience
• 9 years+ in Information Security space;
• Strong experience with security strategy, with a passion to make security realistic, achievable and interwoven with the business fabric;
• Strong experience with a broad range of security technologies, including NextGen Firewalls, DLP, NAC, IDS/ IPS, IdAM, Certificate Management, SIEM, Endpoint Protection, Anti-malware, vulnerability management;
• Strong oral, written, and presentation abilities - able to convey risk to all levels of the business, from C-level executives to operations and development teams;
• Strong experience in migrating enterprise companies from traditional data center infrastructure, application and data designs to hybrid or fully-cloud enabled practices.
• Strong experience with cloud provider ecosystems, including Amazon AWS, Microsoft Azure, and OpenStack.
• Some experience with Unix/Linux and Windows system administration;
• Some experience with logging and alerting platforms, including SIEM integration;
• Some proven ability in security process and organizational design;
• Current understanding of Industry trends and emerging threats; and
• Knowledge of incident response methodologies and technologies.
Desirable
• Well-rounded background in network, host, database, and application security;
• Formal training in and experience using an enterprise architecture methodology (for example, the Zachman Framework or TOGAF);
• Knowledge and experience using SABSA methodology;
• Experience implementing security controls in a bi-modal IT environment;
• Experience driving a culture of security awareness;
• Experience administering network devices, databases, and/or web application servers; and
• Professional IT Accreditations (CISM, CCSA, CCSE, JNCIA, CCNA, CISSP, CCIE Security).
Competences and Behaviours
• Customer orientated
• Working within an international environment
• Builds networks with customers, other team members and other relevant teams is essential
• Keeps all relevant people appropriately informed
• Very good communications, presentation and negotiations skills
• Technically innovative
• Able to express technical and non-technical concepts in clear verbal and written English
• Very good written skills to document complex concepts in a comprehensive, yet readable manner
• Encourages people to be open and share their views
• Considers a range of options that meet the needs of all stakeholders
• Ability to use own initiative to solve technical problems
• Delivery Focused
• Takes responsibility for targets
• Drive efficacy into all solutions delivered, demonstration clear and measurable results through the development of KPIs
• Ambitious and competitive
• Drive innovation and best practice
• Strive for standardisation and simplification in all aspects of work
• Always cost conscious balancing the needs of the business against the provision of the best solutions possible