Information Security Technical Security Architect

Description:

A. Accountabilities:

• Demonstrated experience in domains viz., Security Architecture, Identity and Access Management (MFA, AAA, AD Single Sign-on), Cryptography, Network communications security, Cryptography and PKI, AAA, SOA, Azure Cloud Solutions (IaaS), SDN/SDDC, and Dell HCI (hyper-converged infrastructure) environments.
• Thorough understanding of complex IT systems and stay up to date with the latest security standards, systems and authentication protocols, as well as best practice security products.
• Ability to explain and interact with a broad cross-section of engineers (application/network/systems).
• Expert user of Visio and Threat Modelling tools.
• Develop a risk-based enterprise security architecture framework (TOGAF/SABSA). Implement fit-for[1]purpose SABSA processes.
• Responsible to Create an IT security technical reference architecture and document current state security capabilities, gaps and future state roadmap aligned with IT and business strategies.
• Responsible to Raise awareness w.r.t reference security architecture and its adherence.
• Develop security architecture related metrics (KPIs and KRIs).
• Assist project managers/SMEs throughout the project lifecycle and SDLC phases to ensure security architectural considerations are baked into the IT build.
• Advice and consult teams on technical solutions and best practices for secure architecture, and design.
• Deliver deep technical guidance related to enhancing the security posture of information technology solutions.
• Anticipate possible security threats and identify areas of weakness in a system.
• Proactively address changes in the external threat landscape that have an impact on the computing technologies in the organization.
• Coverage to include domains viz., Technical Security Architecture, Identity and Access Management (MFA, AAA, AD Single Sign-on), Cryptography (include PKI, Network communications security), AAA, SDN (include DNAC, Network communications security), SDDC (include Dell HCI on premise and Azure Cloud) environments, Solution Security Architecture (include for custom/COTS - Thin clients/APIs/Mobile App), Data Security (include Databases Oracle, Splunk & SQL Server) and Privacy (technical side).

B. Qualification:

• Experience with threat modeling of complex systems and risk-prioritized implementation of control.
• Good knowledge of all cyber security domains with hands-on experience in implementing security controls in multiple domains.
• Experience in planning and implementing IT solutions in line with the business objectives and within the IT Security architectural framework.

C. Experience:

• 8-10+/- years of experience in same role.

D. Education and Certification:

• Bachelors degree in Computer Science, Information Technology or any related Stream.
• Certified in TOGAF Masters/ Practitioner, SABSA chartered Security Architect, CISSP- ISSAP.

E. General remark:

• Qatar Based / Transferable visa or Resources are interested to relocate are welcomed.
• The budget for the role is QAR 25,000/- unnegotiable.
• The role is required for Diyar United Company - Qatar Office/ Governmental Sector.