Security Architect

Boston, MA, United States

JOB TITLE: Security Architect

Do not pass up this chance, apply quickly if your experience and skills match what is in the following description.JOB LOCATION: 1 Ashburton Place BostonWAGE RANGE*: $85-$92JOB NUMBER: ITS77 RFR-FY24-016

REQUIRED EXPERIENCE:

In-depth exposure to technical configurations, technologies, and processing environments in one or more projects of similar size and complexity to BEST. • In-depth knowledge and understanding of information risk concepts and principles as a means of relating business needs to security controls. • Knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project plans. • Documented experience with common information security management frameworks, such as International Organization for Standardization (ISO) 2700x and the ITIL, SOX, COBIT and National Institute of Standards and Technology (NIST) frameworks. • Experience in architecting and implementing cloud-based security solutions. • Strong knowledge of security tools and capabilities, such as: IDM and SSO. • Extensive experience in integrating security tools and 3rd party vendor solutions. • Exceptional planning, organization, communication, prioritization, and business analysis skills. • In-depth knowledge of risk assessment methods and technologies. • Proficiency in performing risk, business impact, control, and vulnerability assessments. • Excellent technical knowledge of mainstream operating systems and a wide range of security technologies, such as network security appliances, identity, and access management (IAM) systems, anti-malware solutions, privilege access management (PAM), data loss prevention (DLP), encryption at-rest and in-transit, multi-factor authentication (MFA), end-point-security, vulnerability scanning and patch management, automated policy compliance tools, and desktop security tools. • Experience in developing, documenting, and maintaining security policies, processes, procedures, and standards. • Knowledge of network infrastructure, including routers, switches, firewalls, and the associated network protocols and concepts. • Strong analytical skills to analyze security requirements and relate them to appropriate security controls. • Documented written and verbal communication skills.

JOB DESCRIPTION

The Software as a Solution (SaaS) model chosen by the Commonwealth includes data security protocols and procedures that are audited annually by a third party. The Service Level Agreement (SLA) and contract documentation between the Commonwealth and the system integration and product vendor outline the terms and conditions for maintaining data security, which will be monitored by the Commonwealth. The Security Architect will assist the Commonwealth in implementing necessary procedures to meet risk mitigation requirements and monitor vendor compliance with security protocols. This role involves collaborating with program functional teams to identify end-user roles and permissions for implementing the new solution across in multiple agencies and user types, ensuring appropriate data access. User security procedures will be developed in conjunction with the BEST Security Lead, the system integration and product vendor, and agency staff responsible for user provisioning and deprovisioning. The Security Architect will report to the BEST Security Lead, who reports to the BEST Solution Technical Lead. Close coordination with the BEST Compliance Lead and the BEST program's Independent Verification and Validation (IV &V) vendor will be required. This role is responsible for translating complex security problems into sound technical solutions, providing technical security and architectural direction to technology business teams, ensuring that development efforts are adhering to security design and compliance standards and requirements, providing insights and guidance on overall secure system design, and documenting and communicating security architectural requirements.

Equal Opportunity Employer Veterans/Disabled

* While an hourly range is posted for this position, an eventual hourly rate is determined by a comprehensive salary analysis which considers multiple factors including but not limited to: job-related knowledge, skills and qualifications, education and experience as compared to others in the organization doing substantially similar work, if applicable, and market and business considerations. Benefits offered include medical, dental and vision benefits; dependent care flexible spending account; 401(k) plan; voluntary life/short term disability/whole life/term life/accident and critical illness coverage; employee assistance program; sick leave in accordance with regulation. Benefits may be subject to generally applicable eligibility, waiting period, contribution, and other requirements and conditions.

#J-18808-Ljbffr