Sr Architect, Info Security - Azure/Salesforce/Cloud - Remote

Job Description

Job Summary

Secures enterprise information by determining security requirements; planning, implementing, and testing security systems; preparing security standards, policies, and procedures; mentoring team members.

Knowledge/Skills/Abilities

• Leads an information security architecture team to develop and maintain effective and efficient security solutions within a heterogeneous technology environment.

• Maintains enterprise-wide security architecture and recommends specific controls to support financial services operations, application development, data center operations, and Cloud solutions.

• Evaluates and recommends physical and virtual security solutions to bolster mobile, desktop, server, database, and network implementations

• Proposes and reviews existing design solutions to limit access to assets and associated facilities to authorized users, processes, or devices, and to authorized activities and transactions.

• Determines requirements for identities and credentials for authorized devices and users through single and multi-factor authentication.

• Validates controls used to manage and protect physical access to assets.

• Ensures remote access is managed with appropriate security designs and controls.

• Incorporates principles of least privilege and separation of duties into access permissions and security designs.

• Assures network integrity by incorporating and maintain network segmentation into security designs

• Supervises the design and implementation of data security solutions to ensure company-owned and controlled data are managed consistent with the organization's risk strategy.

• Oversees the use of encryption technology to protect data-at-rest and data-in-transit, and implements data loss prevention technology and procedures to prevent data leaks.

• Ensures the adequate protection and maintenance of encryption keys.

• Maintains system assurance and availability by ensuring adequate capacity is maintained in security designs.

• Recommends integrity checking mechanisms to verify software, firmware, and information integrity.

• Verifies security controls and standards exist to create and maintain a production environment that is separate from the development and testing environment.

• Develops procedures to formally manage assets at the end of life through removal, transfer, and disposition.

• Maintains and uses security policies, processes, and procedures to manage the protection of information systems and assets.

• Oversees the creation and maintenance of baseline configurations, change control standards, and the application of a continuous improvement processes within a System Development Life Cycle (SDLC).

• Develops processes and procedures to maintain and test back-ups periodically and ensure data are destroyed according to policy.

• Evaluates and shares the effectiveness of engineering solutions and technologies with appropriate parties.

• Ensures human resources practices account for cyber security requirements through the employment or contract life-cycle.

• Supervises design and implementation of technical security solutions to ensure the security and resilience of systems and assets is consistent with related policies, procedures, and agreements.

• Applies the principle of least privilege to control access to systems and assets.

• Protects communication networks using industry standards and best practices.

• Certifies maintenance and repairs of information system components is performed consistent with policies and procedures.

• Integrates approved and controlled tools into security designs to ensure maintenance and repair of assets is performed and logged in a timely manner.

• Prevents unauthorized remote maintenance with controls that require approval, logging, and secure connections.

• Performs other duties as required..

Job Qualifications

Required Education

• Bachelor's Degree in Computer Engineering, Information Security, Cyber security, or related.

Required Experience

• Must have working knowledge of plan of action and milestones for network, information system, and data security architectures.

• Must be able to obtain final approval of baseline configurations for all company information systems.

• Must be able to secure final approval of security controls and certification and accreditation of systems and applications ready to transition into the production environment.

• Responsible for final interpretations of security standards, risk assessments, and Cloud service deployments.

• Must have working knowledge of installation and use of all network monitoring tools.

• Periodic access control reviews of perimeter security devices.

• Must be able to research and perform log analysis reviews to support security architectural studies and evaluations.

• Eight (5) years computer and security engineering experience.

• Must be able to demonstrate knowledge of firewall management, secure routing configurations, encryption, VLAN deployment, IPS/IDS integration, VPN, and Microsoft Windows security.

• Must have knowledge of HIPAA, ISO 27001, and PCI-DSS.

• Experience as a security engineer within a Cisco and Microsoft environment is highly desired.

• Excellent communication skills and the ability to work with teams and external stakeholders are essential.

Preferred License, Certification, Association

• CISSP or CISM preferred.

• CISSP-ISSAP, HCISSP, CISSP-ISSEP, or CCSP certifications highly desired.

To all current Molina employees: If you are interested in applying for this position, please apply through the intranet job listing.

Molina Healthcare offers a competitive benefits and compensation package. Molina Healthcare is an Equal Opportunity Employer (EOE) M/F/D/V.

Pay Range: $79,607.91 - $172,483.8 / ANNUAL

*Actual compensation may vary from posting based on geographic location, work experience, education and/or skill level.