Application Security Architect (Filled with 1st Candidate Presented)

Position Reference Number:
$100,000 + Package
Relocation Package: Yes
Job Type: Full-Time
Required Education: BA/BS

Job Description has been engaged by a global client to help build its information security department. We recently placed the CISO and the Manager of Security Governance, Compliance and IT Risk Management in this organization. This Application Security Architect role is a newly created position and is an addition to a growing information security department. This role requires a security architect who can design end-to-end solutions around applications. This role is reserved for an information security professional who desires to step into a green field environment where they can put their fingerprints all over all facets of information security on a small but talented team. In this role, whatever you do today will be foundational and formational to the future of the organization. To acquire this role, you must demonstrate an eagerness to learn and to build and you must be flexible and able to deal with change. The security professional who assumes this role will: Evaluate security technologies to recommend upgrades to the organization’s security needs. Assess the organization’s technology needs. Set direction and lead improvement of techniques, methodologies and deliverables. Create solutions and support models for technology encompassing multiple platforms. Create short-term and long-term enterprise system technology roadmaps based on organizational strategic requirements and business needs. Use metrics to improve processes. Define and review reports to ensure all services are delivered successfully. Work closely with information systems teams and outsourcing partners to ensure that technology solutions are effectively delivered. Ensure a thorough analysis of service results and respond to any escalated service delivery issues.

Job Requirements

A BA/BS in Computer Science, Information Systems or related field is required. 8 or more years of experience in information technology with at least 5 years of experience working with information security systems technologies that includes application security. A background in application development / software development preferred. Experience with secure coding / secure software development / application security practices. Skills to include Fortify, Web Inspect, AppScan, Metasploit, nmap, etc. preferred. Demonstrated understanding of infrastructure design and support concepts. Demonstrated experience with information security architecture protocols to include Web Services, SOA, HTTP(s), SNMP, etc. Experience with Microsoft .NET is strongly preferred. Information security certifications such as: CISSP, MCSE, CSSLP, GSSP-.NET preferred. Experience with threat modeling, vulnerability assessments, network and server security, firewalls, VPN, Anti-Virus, Patch Management, etc. Experience with FIPS, Common Criteria, etc preferred. Phoenix Security Jobs, Application Security Jobs, .Net Security Jobs, Application Security Architect Jobs