Enterprise Security Architect

This is an exciting opportunity to join a leading global marketing business responsible for reviewing solutions to secure the organization's critical IT assets according to appropriate security practices and in compliance with the business' Standards, Policies, Procedures and Security Architecture.

Qualifications:

* Strong experience of reviewing the security of applications for alignment with security policy, security standards and best practices
* Experience of web server and web application security and remediation
* Experience of the design and implementation of database security solutions such as encryption, data tokenization and masking, database firewalls and database access monitoring
* Experience of the design and implementation of multi-factor authentication and single sign-on for applications
* Experience of the design and implementation of Web Application Firewalls, web services security and API gateways
* Experience of the design and implementation of mobile application security controls
* Experience of the design and implementation of security controls in Microsoft Active Directory and Office 365 services
* Experience of the design and implementation of security controls in Amazon Web Services, Microsoft Azure and Rackspace cloud services
* Experience or working knowledge of penetration testing methods
* A proven ability to interface across a global organization with other teams, such as EIS Engineering and Security, Corporate Applications, Enterprise Applications, Internal Audit, agency CIOs, and agency security teams and compliance coordinators, etc.
* An analytical demeanour and the ability to effectively communicate with individuals across all levels the organization
* Excellent written and verbal communications skills
* Ability to adjust to changing priorities while multitasking effectively
* Working knowledge of compliance frameworks and security management standards (e.g., ISO 27001, COBIT, NIST CSF)
* Working knowledge of best practices/standards (e.g., PCI DSS, HIPAA, State data breach laws) for implementing application-level data encryption

Experience and Education

* Bachelor's degree in Computer Science, Information Security and Risk Management, Information Systems, Engineering or related major
* CISSP, CISM, GIAC, CCNA, CCENT, GSEC, or MCSA certification required
* Extensive experience working in Information Security.
* Extensive experience security architect role with experience in reviewing and approving the security of applications
* Advertising and marketing communications industry experience preferred

Please send your CV or contact Nicola Ault at Gerrard White Consulting for more details.