Title: IT Security Architect - CISSP (Onsite)

Location: Brooklyn, NY

Employment Type: 12 Months + Contract

Hours: 30 hrs/Week

The Consultant shall perform the following:

• Evaluate current IT architecture policies and standards by: Reviewing existing IT architecture policies; Reviewing existing IT architecture standards; Identifying gaps in IT architecture policies; and Identifying gaps in OSC IT architecture standards.
• Use identified gaps to: Determine required IT architecture policies to be created; and Determine required IT architecture standards to be created.
• Assist to: Develop required IT architecture policies; and Develop required IT architecture standards.
• Assist to create IT architecture governance processes and procedures by: Determining necessary IT architecture governance process; and Creating necessary IT architecture governance documentation.
• Assist with security requirements for Cloud Security ( "CS") services by: Reviewing current CS security requirements; Determining CS security requirements; and Documenting CS security requirements.
• Assist OSC with Public Key Infrastructure ( "PKI") services by: Reviewing the current state of the PKI infrastructure; Determining PKI security requirements; Documenting recommendations and guidance for PKI infrastructure; and Providing guidance implementing PKI recommendations.
• Assist ISO with the Information Security Program by: Conducting security-related research; Assisting with security awareness training; Determining security requirements for new systems or applications; Reviewing compliance issues; Assessing security risk; Creating, reviewing, and updating security policies and standards; Mapping the internal network; Evaluating firewall rules; Determining best security practices for Office 365; and Performing other security program-related work.

MINIMUM QUALIFICATIONS The Consultant must possess the following minimum qualifications:

• A Bachelor's Degree; Valid Certified Information Systems Security Professional ( "CISSP") Certification;
• Five years of experience as a Security Enterprise Architect working within an organization that employs National Institute of Standards and Technology ( "NIST") as its security framework;
• 3.Five years of experience architecting and implementing PKI; Five years of experience architecting and implementing cloud security requirements; and
• Five years of experience creating and reviewing organizational architecture governance, policies and standards, and procedures.
• Provide the experience described in the minimum qualifications above, including specific NIST-related security experience, within a resume or as an attachment to a resume.

PREFERRED QUALIFICATIONS will give preference to candidates with the following qualifications:

• Ten years of experience as a Security Enterprise Architect within an organization that employs NIST as its security framework;
• Strong communication skills, working with both technical and non-technical people, including:
• Strong presentation and verbal skills demonstrating the ability to communicate complex security architectures to a non-technical audience; Strong written skills with proven ability to document security and network architectures, procedures, and reports for a non-technical audience; Strong instructional skills for mentoring and knowledge transfer; and
• Five years of project management methodology experience with information technology projects. Experience may include serving as the focal point of contact for project status, meetings, reporting requirements, scope changes/extensions, scope issues, and concerns raised by staff or project stakeholders

- provided by Dice