CISSP Jobs - Application Security Architect - Intermediate / Senior, 13658

at Citizens Property Insurance Corporation
Location Jacksonville, FL
Date Posted May 15, 2019
Category Default
Job Type Full-time

Description

A career at Citizens is unlike a career at any other insurance company, because Citizens is unlike any other insurance company. If you are looking for an opportunity in which you can stretch to your full potential, expand your knowledge and grow your career, you have found it.

Winner of the 2017 WorldatWork Seal of Distinction, one of only seven companies throughout Florida to receive this award, Citizens is a diverse team of professionals helping people and communities throughout Florida.

At Citizens, employees do more than live up to their potential - they exceed it.

So what are you waiting for? Come discover the career you never expected - at Citizens.

JOB SUMMARY

The Application Security Architect is responsible for leading the planning and design of secure application development and adopting secure coding practices to reduce application vulnerabilities during the Systems Development Life Cycle (SDLC) while aligning with enterprise security and privacy standards. This position will work closely with Citizens' Application Development, Systems Analysts, Release Managers, and Enterprise Architects in order to identify, design and apply security controls; secure code practices; reference security architecture; and security and compliance documentation.

ESSENTIAL FUNCTIONS

  • Lead the development of a strategic application security architecture vision including security reference architecture and security control design in accordance with Citizens' adopted standards and frameworks that are aligned with overall business strategy using the current Technology and IT Security & Risk roadmaps.

  • Lead the establishment of DevSecOps practice at Citizens by developing a strategy as well as participating in design and code reviews; application vulnerability management and security testing (dynamic and static testing) in collaboration with Enterprise Architecture, Application Development, DevOps, Shared Services and IT Operations.

  • Establish and performs the threat modeling framework for Citizens in collaboration with Enterprise Architecture in order to identify and assess risks that lead to sound recommendations for risk treatment throughout the SDLC.

  • Provides application security consulting and mentoring across the organization. Provides advice and consulting support to project teams and other architects.

  • Work closely with Enterprise Architecture to formulate strategies in alignment with the corporate; and IT security and risk.

  • Participate in compliance and risk management activities as necessary by reviewing current and existing systems and applications architecture in order to identify design and security controls gaps and recommend enhancements.

KNOWLEDGE, SKILLS AND ABILITIES

  • Advanced knowledge of IT Security and IT Risk theory/practices

  • Knowledge of architecture methodologies such as TOGAF or Zachman

  • Experience with technologies such as Java, JavaScript, JSP, HTML, XML, Python and SQL

  • Practical knowledge of software security Testing and Vulnerability Management Tools

  • Advanced knowledge of IT Security; Application Development and Application Security frameworks

  • Practical experience conducting Threat Modeling

  • Strong knowledge in Service Oriented Architecture (SOA) and web services

  • Knowledge of IT infrastructure/ architecture

  • Identity and Access Management "IAM" concepts and principles such as trust levels, trust boundaries, privileges and entitlements

  • Knowledge of Cloud services such as Microsoft Azure and AWS deployment, Security, Network, and Operational architectures and solutions

  • Ability to lead and coach others

  • Ability to work on multiple initiatives at once

  • Conceptualize requirements into comprehensible models

  • Research and learn new technologies and threats

  • Strong communication skills with ability to conceptualize

  • Time management skills

  • Ability to work independently and lead teams

  • Strong collaboration, communication & influencing skills

INTERMEDIATE LEVEL REQUIREMENTS

  • Bachelor's Degree (Computer Science, Information Systems/Technology, Cybersecurity or related program) OR 4 years of relevant experience OR a combination of college education and relevant experience equivalent to 4 years.

  • 3 or more years of combined application development, application security architecture, access controls, IT Security Engineering or IT Security architecture working on progressively complex IT projects.

  • One or more security certifications (i.e. CISSP, SANS, GIAC)

SENIOR LEVEL REQUIREMENTS

  • Bachelor's Degree (Computer Science, Information Systems/Technology, Cybersecurity or related program) OR 4 years of relevant experience OR a combination of college education and relevant experience equivalent to 4 years.

  • 6 or more years of combined application development, application security architecture or IT Security architecture working on progressively complex IT projects.

  • One or more security certifications (i.e. CISSP, CISSP-ISSAP, CSSLP, GIAC)

PREFERRED EXPERIENCE

  • Experience using Agile Methodology

  • Knowledge of industry standards such as NIST CSF, CIS20, OWASP, COBIT

  • Application development and database management

  • API architecture and design

In addition to a competitive salary, Citizens offers its employees an outstanding total rewards package, including:

  • Retirement savings plan with an 8 percent company match
  • Medical, dental and group life insurance

  • Paid time off: vacation, sick and holiday leave

  • Tuition reimbursement

  • Professional and leadership development opportunities

  • Flexible work schedule

  • On-site wellness activities

  • Employee recognition programs

  • Relocation assistance (where applicable)

  • Community and volunteering opportunities

  • Casual dress and more

    Citizens is proud to be an Equal Opportunity Employer

    Relocation Assistance is available for this position

*LI-AR1

Only registered members can apply for jobs.