This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

• Lead and produce system threat models for integration of commercial components into a Data Lake platform.
• Review Cloud architectures with security lens.
• Propose effective security controls within the environment and identify and suggest mitigations for security vulnerabilities.
• Simplify complex security topics, lead discussion in technical and business teams, and communicate risk accurately.
• Consult with solution architects and development teams to help them align with client's policy and standards and meet the risk appetite of the customer.
• Work with members of architecture teams to review and create secure application and infrastructure designs and patterns.
• Assist development teams by reviewing threat models related to applications and related systems. Analyze potential business impact and exposure leading to risk, based on emerging security threats, vulnerabilities, configurations, threat actor TTPs, etc.
• Evaluate CICD pipeline design and related development team processes and help to mature and secure creation, management, and utilization of pipelines.
• Assist in identification and integration of security focused tooling into development and operations processes.
• Support secure application architecture within the Federal Reserve System by fostering constructive dialogue and seeking resolution when confronted with discordant views.
• Solicit feedback and continuously improve your knowledge, skills and capabilities related to the position.

Qualifications

• Able to create AWS secure Cloud architecture designs
• Understanding of current security threats, techniques, and landscape
• Experienced with System threat modeling of applications and platforms
• Able to identify and provide mitigations for security vulnerabilities within applications and application environments based on threat models.
• Able to simplify complex security topics for business consumption and critical decision making
• Clear and accurate communication, excellent soft skills are a must
• Able to lead/direct discussions with technical and business teams to achieve common goals.
• Able to work well within a team and support team goals
• Understand cyber security frameworks such as NIST 800-53
• Ability to work on a geographically distributed team across multiple time zones
• Familiarity with SAFe a plus

Requirements

• Self-starter, able to readily explore and learn new areas and concepts.
• Knowledge and experience normally acquired through, or equivalent to, the completion of a Computer Science or Computer Engineering Bachelor's degree with a minimum of 5 years of job-related experience.
• Relevant technically focused certifications in Cloud and/or enterprise security architecture such as GCAD or GDSA are advantageous
• Experience with AWS commercial or government Cloud
• Securing critical workloads in a Cloud environment.
• Knowledge and experience with Databricks, Starburst, Collibra and/or Immuta is advantageous.

Company Description

The Stefanini Group is a global provider of offshore, onshore and near shore outsourcing, IT digital consulting, systems integration, application, and strategic staffing services to Fortune 1000 enterprises around the world.

• Our presence is in countries like the Americas, Europe, Africa, and Asia.
• More than four hundred clients across a broad spectrum of markets, including financial services, manufacturing, telecommunications, chemical services, technology, public sector, and utilities.
• Stefanini is a CMM level 5, IT consulting company with a global presence.