Security Architect

Hudson is looking for a Security Architect to Co-ordinate design activities, promoting the discipline to ensure digital security.

• Commence asap for a 12 month contract.
• Geelong office location (3 days per week in office)
• Full time role

Qualifications

Highly regarded :

• CISSP
• CISA
• Cloud Security Certification

Purpose:

• Co-ordinate design activities, promoting the discipline to ensure digital security.
• Evaluate new services, vendors, applications and security tools, from a security perspective and architectural fit
• Document data flows of sensitive information within the organization (e.g., PII) and recommend controls to ensure this data is adequately secured (e.g., encryption, tokenisation, etc.).
• Provide guidance on the development of solution components to ensure they take into account developments and changes in the digital business and threat environments and are secure by design.
• Review security technologies, tools and services, and make recommendations to the broader security team for their use based on security, financial and operational metrics.
• Assist with developing security guidelines.
• Document security patterns from Infrastructure designs for reuse in the program.
• Contribute to the design from Infrastructure environments.
• Identify security gaps and provide controls to mitigate them. Escalate any risks to the risk analyst.
• Provide security and technical risk perspective for solutions drafted and advise on solutions to improve the security posture.
• Design security controls in AWS Infrastructure, Salesforce and IBM Cloud environments.
• Review security controls in the AWS environment with the use of various in-house AWS tools i.e. Security hub, AWS Config, Security groups, NACLs, Routing tables, Guard Duty, Detective, AWS KMS, etc.
• Working and implementation knowledge of AWS based perimeter security with in-house AWS tools and with various vendor specific tools.
• Experience in designing and implementing security controls around IAM, application security, OS hardening, perimeter WAF, etc.
• Assist with testing and verification of security controls.
• Participate in AWS change management.
• Accountable for creating and capturing accurate and complete records of the business activities related to this position, in accordance with approved policy and procedures. This is applicable to both hardcopy and electronic information, including email
• Adhere to all WorkSafe's policies and procedures and any legislative requirements relevant to this position
• Any other reasonable and related duties as required to meet the ongoing needs of WorkSafe
• Understanding of how securely AWS tools and technologies should be used for data pipeline architecture.( Secure use of S3, Step, Lambda, AWS CLIs, etc.)
• Technical security assessment of AWS environment with the use of various in-house AWS tools i.e. Security hub, AWS Config, Security groups, NACLs, Routing tables, Guard Duty, Detective, AWS KMS, etc.
• Working knowledge of security policy definition and experience in working with multiple stakeholders to formalize the security policy for an organization.

Relevant Qualifications, Work Experience & Specialised Knowledge

• Integration technologies to ensure more secure solutions for the organisation.
• Demonstrated ability to work independently and collaboratively to manage end-to-end support and resolution processes for assigned tasks through in-depth analysis, review and application of expert knowledge.
• Customer service focus and an ability to work under pressure in a multifaceted technical environment managing complex issues utilising innovative approaches and best practice.
• Demonstrated ability to engage and influence external providers to deliver services that meet the business strategic outcomes in a safe and secure manner.
• Highly developed interpersonal, verbal communication, influencing and negotiation skills, with strong customer focus and ability to understand issues, manage expectations, gain agreement, resolve conflicts and translate Security Architecture and technical information into language that is comprehensible to the business.
• Experience in enterprise application systems analysis and development, including: analysis, design, development, testing, implementation, documentation and support with a thorough understanding of the Service Delivery Lifecycle.
• Experience in application support and lifecycle management, deployment management, environment configuration and software development lifecycle methodologies, tools and systems, including but not limited to; ITIL, DevOps, Agile, Scrum, Continuous Delivery and/or Rapid Application Development.
  

HOW TO APPLY:

Please submit your resume (in MS Word Format) for consideration via the link below. A cover letter demonstrating your relevant experience may also be reviewed.

Should you wish to discuss, please contact Judith Fernandes at Judith.fernandes@hudson.com , quoting reference number 236332.

Your interest will be treated in the strictest of confidence.