Junior Security Architect

Contract Type
Job description

Our partner is global leader in commercial real estate services, helping clients transform the way people work, shop, and live.

The Jr. Security Architect is responsible for partnering with Sr. Security resources implementing, and assessing systems, applications, and services as part of a risk-based and cost-effective security program. This role serves as a primary contributor to the strategy, secure design, and implementation of systems, applications, and services.

Essential Duties and Responsibilities:

  • Develop and provide security guidance for new and existing systems, applications, and services; this includes weighing business needs, internal governance standards, and third-party compliance requirements.
  • Partner with the Technology Share Services (TSS) team and third-party service providers to establish and track regional and global priorities for security initiatives.
  • Partner with Risk Management and Client Data team to provide technical guidance and mitigating controls for identified risks within the environment
  • Provide regular reporting on security initiatives to the Senior Management Group.
  • Ability to own niches within our Security Stack and serve as the subject matter expert on security issues and provides expert level consultation to stakeholders across the organization. Reviews architectural designs and make recommendations for approval.
  • Provide guidance regarding security for assets and data, both on-premises and cloud-based. Evaluate emerging technologies and product categories to determine where they fill gaps, overlap with existing solutions, or extend capabilities.
  • Implement and maintain security systems, applications, and services that provide detection, preventions, containment and deterrence mechanisms to protect corporate data.
  • Provide guidance on the selection, testing, and deployment of new security solutions.
  • Document security requirements by evaluating business needs, internal governance standards, and third-party & customer compliance requirements.
  • Align cloud-based systems, applications, and services to corporate security standards and requirements. Develop cloud-specific standards and requirements as appropriate.
  • Determine security requirements by evaluating business strategies and requirements, research information security standards, conduct system security and vulnerability analyses, and identify integration issues.
  • Using the security tools available, monitor and follow up on any suspected or realized threats, keeping a clear and updated record of steps taken to remediate or reduce the threat.

Other Duties and Responsibilities:

  • Advise maintaining control standards, and system and application standards. Provide input to Corporate and Security policies.
  • Provide governance over security, risk, and vulnerability assessments of on-premises and cloud-based systems, applications, and services.
  • Conducting IT and Security audits, writing reports, reviewing findings, making recommendations to management, and tracking remediation progress in collaborating with IT, Internal Audit, Compliance, business owners, and business unit leads.
  • Analyzing and evaluating security operations to identify risks or opportunities for improvement.
  • Represents the security program at senior management meetings.
  • Will perform other duties as assigned.

Job Requirements (Education, Work Experience, Certifications, Skills):

  • The position requires a Bachelor's degree and 3 to 5 years of related experience with a minimum of 2 years of technical experience in one or more of the following: computer and network security, cloud-based security engineering, vulnerability testing, intrusion detection/prevention, security monitoring and event correlation, or computer forensic analysis.
  • Relevant Information Security certifications (ex. CISSP, CCSP, GIAC, MCSE, CEH, CHFI, CISA, CISM, CRISC, etc.)
  • Understanding of information security breach trends, management tools, and risk management.
  • Experience implementing security and compliance best-practice processes and procedures.
  • Strong understanding of security controls for cloud-based systems, applications, and services.
  • Experience deploying and configuring security control solutions for an enterprise-level, cloud-based system, application, or service.
  • Experience working in a heterogeneous technical environment.
  • Experience working with MSSP resources.
  • Experience serving on projects that require interaction with the business.
  • You will be part of a professional team where the good atmosphere is guaranteed,
  • Many training possibilities waiting for you to improve your technical skills
  • AYCM, health insurance, bonus day off support your well-being
Other notes
For more related job opportunities visit https://www.grafton.hu/en/job-search