Senior IT Security Architect

Senior IT Security Architect page is loaded## Senior IT Security Architect locations:
VA-Reston:
TX-Houston time type:
Full time posted on:
Offre publiée aujourd'huijob requisition :
JR2505095

At AIG, we are reimagining the way we help customers to manage risk. Join us as a Senior IT Security Architect to play your part in that transformation. It’s an opportunity to grow your skills and experience as a valued member of the team.#
** Make Your Mark
** At AIG, technology is at the heart of everything we do, from underwriting risks to processing claims. The Information Technology (IT) team equips our colleagues with the latest tools to complete their work efficiently, with the highest standards of excellence. The team is responsible for shielding the company’s systems from security risks, while designing technology strategies that enable AIG’s businesses to achieve their goals.

Innovation in IT drives innovation across the organization.#
** How you will create an impact
** The Security Architecture team provides many security capabilities as services to the global AIG enterprise. We are looking for a hands-on information technology security expert to join our architecture team in Information Security Office. The person will work with cross-functionals AIG global information security teams, AIG business and applications teams, data, network, and cloud services to secure AIG’s global applications landscape.
* Work with IT and business stakeholders for security architecture and security controls assessment. Act as a design authority on cloud application security during the “Permission to Build” and “Permission to Operate” process. Ensure all security standards are followed, and any violations are remediated. Act as an evangelist to drive security blueprint adoption.
* Provide support and guidance in designing complex business and operations security solutions. Use cloud Service APIs (e.g., AWS APIs), SaaS solutions (e.g., SIEM, XDR, Threat detection and Cloud native security services) to detect security blueprint violations (e.g., an unauthorized public exposure of AWS S3 bucket). Work with global cloud team and Business CIO team to remediate security violations for application architecture.
* Participate in defining architecture and process standards for the cybersecurity controls, implementation and operations.
* Contribute to evaluation, selection and configuration of cybersecurity products and services from vendors. Based on AIG’s cloud security strategy, identify cloud native solutions for security monitoring. Lead POCs for cloud security solutions.
* Develop security requirements for the business use-cases and that meet AIG global security standards
* Work with infrastructure operations, application developers, administrators, consultants and vendors to build, configure, test and implement secured solutions that meet the business needs and are aligned and consistent with IT security strategies.
* Develop and implement principles of secure design within the architecture framework of the company – across IT, functions and across business lines
* Establish reference cybersecurity architectures that can be leveraged for scale and decentralized deployments to deliver the Cybersecurity controls and plan for Private and Public Cloud to support strategic business plan
* Provide architecture guidance across cybersecurity functional areas, which include Network, Endpoints, Data Protection, Logging, Systems/Applications/APIs, Cloud, B2B, B2C, Identity & Access Management, Operational Threats, IoT and SaaS interconnect to name a few#
** What you need to succeed
*** 8+ years of IT Security Architecture related work experience, preferably at a large, global organization. 3+ years of engineering and hands-on design and architecture of effective security controls and measurement in network and applications domains for large financial enterprise.
* Hands-on with development of applications security architecture for migration of IT workload to Cloud services.
* Expert knowledge and implementation experience of cloud security domains of IAM, SaaS, IaaS, PaaS, Applications and Data Security.
* Strong knowledge of Dev Sec Ops ,…