Snr Security Architect

·       5-7 years of knowledge architecting, selling, and implementing solutions

·       2-3 years architecting security solutions in the cloud

·       Strong C-level communication skills to influence client stakeholders to articulate complex technology solutions, verbal (e.g.:  presentations, seminars, etc.), and written (e.g.:  reports, articles, etc.).

·       Experience developing and building solutions as an Engineer or Architect that drives business value

·       Be the technical advisor for the client for their digital transformations.

·       A good understanding of the business, privacy, security, and compliance challenges surrounding the secure development lifecycle and a passion for solving these challenges for clients.

·       Stakeholder management, able to coordinate, influence teams from the client, G42 (local Cloud provider) and Accenture

·       Solution architecture experience, end-to-end understanding of the security domain, with in-depth experience in a few sub domains. Data security and privacy experience is a major plus.

·       Knowledge/previous experience in Abu Dhabi government (or the public sector industry in general) is a plus.

·       Most importantly, not shying away from rolling up their sleeves and getting into the details and low-level solution design aspects, working closely with the architects from G42 (local Cloud provider) who are building the data platform.

We would love your story so far to have similar elements:

·       Ability to shape technical engagements including architectural design sessions and proof of concepts (PoC) through to full multi-year cloud transformation programs, especially when migrating from on-premises to cloud using Azure, GCP or AWS

·       Enforcing ‘least privileged’ policies at scale across enterprise organizations

·       Experiences doing SAST (Static Application Security Testing / Static Code Analysis), DAST (Dynamic Application Security Testing / Runtime Application Analysis), or Pentest (Penetration testing)

·       OWASP Top 10 / Mitre Att&ck Framework

·       Implementing cloud-native, automated Application Security tooling

·       Vulnerability management, across COTS, custom and third-party software

·       Designed and operated a security incident response team

·       Deployed and operated Endpoint Detection Response (EDR) tools

·       Execution experience of compliance standards such as HIPAA, PCI DSS, ISO 27001, GDPR

·       Evaluation and operation of Security Information and Event Management (SIEM) tools

·       Application of CIS and/or NIST security framework across enterprise

·       Leveraged AAA mechanisms to protect systems and information authentication, authorization, auditing

·       Designed and implemented application authentication using service principals, shared key management, and/or private key infrastructure

·       Applied security and monitoring controls on container architectures (docker, kubernetes, AKS, ACS)

·       Have some of the following certifications: CISM, CISSP, CSSLP, CEH, GWEB, OSCP, OSWE, Azure AZ-500 (Microsoft Certified: Azure Security Engineer Associate)