Cybersecurity Architect

Location : 100% Remote (EST Hours)

Duration : 3 months Contract

Client: General Electric Co Cincinnati

Minimum Experience:

• 5 years as Cybersecurity Architect or similar experience in a software security role
• Experience working on infrastructure projects across cloud compute network and/or storage towers
• Handson experience working in Cloud (AWS and/or Azure) and with related infrastructure.
• Experience with software development practices techniques and tools.
• Knowledge of and experience with various operating systems platforms technologies programming languages security tools etc.
• Ability to document work products processes procedures and architecture diagrams effectively especially against a formalized framework of controls.
• Experience with security best practices and deep understanding of cloud risks and risk management and assessment of cloud resources and events.
• Experience using at least one programming scripting language (e.g. Python) for automations serverless code and API consumption.
• High level familiarity and/or experience in developing of CI/CD pipelines and using common CI/CD tools and technologies native to cloud or other industry standards.
• Experience in using source control systems and hosting tools like Git and GitHub.
• Familiarity with audit practices and ability to guide teams in generating audit ready evidence for security control implementation in applications and infrastructure.

Basic Qualifications:

• Communication Skills
• Ability to work independently and communicate the technical and securityrelated issues to client / business stakeholders.
• Ability to communicate in an organized and knowledgeable manner in both written and verbal formats. This includes delivering clear requests for information to users and communicating technical information to nontechnical audiences.
• Ability to communicate consistently and drive objectives relying on factbased decisions about risk that improve the tradeoff between risk mitigation and business performance.
• Good presentation project management facilitation and delivery skills.
• Ability to create documentation of work and present to management.

Cloud/Security Skills:

• Understand cloud services and concepts such as AWS GuardDuty Azure Policies AWS Config PaaS Database AWS Lambda and IAM services.
• Understand cloud networking concepts and architecture and services such as AWS Firewall Network Security Groups (NSG) and Internet Gateways.
• Ability to troubleshoot and develop solutions to complex issues which may include but are not limited to Cloud architecture security alerts log monitoring and cloud and serverless infrastructure.
• Deep understanding of cloud security technologies and cloudbased solutions.
• Deep understanding of cloud risks and risk management and assessments.

IT Processes Skills:

• Understand change and configuration management processes and ability to strictly adhere to them.
• Understand exception management process for cloud controls and guardrails.
• Deep understanding of asset management specifically cloud assets/resources.

Strong Critical Thinking Skills:

• Ability to identify and analyze current processes including bottlenecks concerns etc. and then act upon them and effectively justify those actions.
• Ability to identify future roadblocks and promote databased problem solving.
• Ability to assess and prioritize problems in relation to organizational goals.
• Ability to effectively apply analytical and problemsolving capabilities.

Additional Skills:

• Strong understanding of privacy security and other regulations that are applicable to GEA.
• Understand security controls framework like NIST CIS and ISO.
• Ability to remain flexible in a demanding work environment and adapt to rapidly changing priorities.
• Strong time management prioritization and attention to detail.
• Possess and exhibit a high level of integrity and ethics.
• Ability to articulate technical details through welldocumented artifacts.

Desired Qualifications:

• Certifications in the following or similar are considered nice to have:

• AWS Solution Architect Developer or DevOps Certifications
• Azure Architect or Administrator Certifications
• CISSP Security or similar

• Knowledge of existing technologies that will be impacted by this initiative:

• AWS and Azure
• Network Storage Application Compute Infrastructure
• Compliance frameworks such as NIST 800171 CMMC SOX etc.
• Integrations / Automations
• CSPM tools (e.g. Prisma Wiz)