Security Architect

Job Description

The client is building out their Oracle cloud. They are going to be using Oracle Fusion heavily and need to build everything out from scratch and want to do it internally and need more support and education with a consultant that has this experience. This role is for the security side and will need to deploy, configure and support/manage Oracle's CSPM (called Oracle Cloud Guard).

• Annual assessment of Oracle cloud
• Deploy, configure and support/manage IPS (Intrusion Prevention System) in Oracle cloud
• Integrate Oracle cloud with different security technologies: IVX cloud (sandboxing), Arc Sight (logs) and any new potentially new technologies

The EITS Security Architect will interface between the CISO's strategic and process-based activities and the work of the technology-focused analysts, engineers and administrators in the IT organization. The Security Architect must be able to translate the IT security requirements and constraints of the business into technical control requirements and specifications, as well as develop metrics for ongoing performance measurement and reporting.

The Security Architect coordinates the IT organization's technical activities to implement and manage security.

The EITS Security Architect is part of the Enterprise Information Technology Services, Information Security and Risk Management team and will work at an enterprise level to ensure a consistent delivery of information security and risk management services. This individual will act as a subject matter expert to the assigned business units on matters regarding information security and compliance with HIPAA, Joint Commission, DSRIP, COBIT, and state privacy laws.

• Lead and coach on the definition of security architecture, including the development and implementation of effective security administration processes for all platforms.
• Actively engage in security architecture solutioning within key pre-implementation systems.
• Identify and implement emerging data access control technologies, information systems security issues, safeguards, and techniques.
• Perform security reviews and identify security gaps in security architecture, resulting in recommendations for inclusion into the risk mitigation strategy.
• Provide Security Architecture guidance to the higher level EITS Management within the business and engage with multiple cross functional teams.
• Conduct application vulnerability scans, recognize vulnerabilities in security systems, and design countermeasures to identified security risks.
• Design security controls based on information assurance (IA) principles and tenets.
• Work with the enterprise architecture team to ensure that there is a convergence of business, technical and security requirements; liaise with IT management to align existing technical installed base and skills with future architectural requirements.
• Develop a strong working relationship with the security engineering team to develop and implement controls and configurations aligned with security policies and legal, regulatory and audit requirements.
• Keep informed on current threats and industry regulations.

• Cloud, OCI, Oracle, Oracle CSMP, Security, Information security, Firewall, Security architecture, SIEM, Vulnerability management, Cloud Guard, Cyber security, Network security, CISSP, Architecture.

• Cloud, OCI, Oracle, Oracle CSMP, Security, Information security, Firewall, Security architecture, SIEM, Vulnerability management, Cloud Guard.

• Strong knowledge of infrastructure, application and security protocols in addition to configuration management techniques and risk management/compliance/audit standards.
• Deep knowledge of HIPAA/HITECH, NIST CSF, ISO
  27001/27002 and PCI-DSS Standards and Requirements.
• Knowledge of encryption algorithms.
• Knowledge of known vulnerabilities from alerts, advisories, errata, and bulletins.
• Knowledge of network security architecture concepts, including topology, protocols, components, principles (e.g., application of defense-in-depth), and traffic flows across the network (e.g., TCP & TCP/IP, OSI, etc.).
• Experience working with network access, identity, and access management (e.g., Active Directory, access federation, multifactor authentication, PKI).
• Experience working with operating systems (Microsoft Windows, Linux, UNIX, MacOS X).
• Knowledge of security management and secure configuration management techniques.
• Knowledge of software engineering.
• Skill in assessing the robustness of security systems and designs and determining how it should work (including its resilience and dependability capabilities).
• Knowledge of IT supply chain security/risk management policies, requirements, and procedures.

• Must possess a high degree of integrity and trust along with the ability to work independently.
• Participate in special projects as needed and perform other duties as assigned.
• Must be able to work independently as well as…