Senior Cloud Security Architect (26185)

NetApp is the data authority for hybrid cloud. We provide a full range of hybrid cloud data services that simplify management of applications and data across cloud and on-premises environments to accelerate digital transformation.

Together with our partners, we empower global organizations to unleash the full potential of their data to expand customer touchpoints, foster greater innovation and optimize their operations.

Read on to find out what you will need to succeed in this position, including skills, qualifications, and experience.

NetApp Data Fabric simplifies and integrates data management across cloud and on-premises to accelerate digital transformation.

It delivers consistent and integrated data management services and applications for data visibility and insights, data access and control, and data protection and security.

And unleashes the power of data to achieve a new competitive advantage.

If you ask anyone at NetApp why they work here, the answer is inevitably the same : it’s the people. At NetApp, we place trust, integrity, teamwork, and caring at the heart of what we do.

As such, we’ve created a culture where people feel empowered to make a difference; where we’re passionate about innovation and collaboration;

and where we take care of each other, our customers, our partners, and our communities simply because it’s the right thing to do.

We provide comprehensive medical, dental, wellness and vision plans for you and your family. We also offer financial savings programs to help you plan for your future.

We work hard but also recognize the importance of work-life balance for our employees. We offer educational assistance, legal services, access to discounts and fitness centers.

Our volunteer time off program is best in class because what’s important to our employees is important to us! Join us, and we’ll help you do your best work.

Job Description

Are you data-driven? We at NetApp believe in the transformative power of data to expand customer touchpoints, to foster greater innovation, and to optimize operations.

We are designed for simplicity, optimized to protect, created to embrace future opportunity, and open to enrich choice. We are the data authority for hybrid cloud, and we are helping our customers realize the full potential of their data.

We’ve built a Data Fabric for a data-driven world to simplify and integrate data management across the resources that are best for the business.

With the Data Fabric, our customers can harness the power of cloud data services, build cloud infrastructures, and modernize storage through data management.

By harnessing the power of hybrid cloud data services, customers gain the freedom of choice to securely manage and move data anywhere, on any cloud.

Only NetApp can help organizations deliver data-rich customer experiences when they rapidly test and deploy new applications that easily use data and services regardless of where they reside or in what form.

Qualifications

The Senior Security Architect is responsible for determining security requirements; planning, implementing, and testing security systems;

preparing security standards, policies, and procedures; and mentoring team members. He / she also is responsible for designing, building, testing and implementing security systems across NetApp's networks, infrastructure, and cloud based architecture.

The Senior Security Architect is expected to have a thorough understanding of complex IT systems and stay up to date with the latest security standards, systems and authentication protocols, as well as best practice security products.

Job Requirements

• Interpret compliance and security requirements to design implementable and repeatable controls
• Identify gaps in existing and proposed architectures and security controls and provide recommendations for resolution
• Contribute to creation and maintenance of Enterprise Information Security policies, standards, and process documentation
• Coordinate with Enterprise Information Security leadership to create and maintain overall short- and long-term roadmaps
• Conduct reviews for projects related to infrastructure and general information security to ensure they meet requirements and target-state architectures
• Participate in risk assessment activities as subject matter expert for infrastructure and general information security concerns
• Determine security requirements by evaluating business strategies and requirements; researching information security standards;
• conducting system security and vulnerability analyses and risk assessments; studying architecture / platform; identifying integration issues;

preparing cost estimates

• Plan security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices;
• designing public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software;

adhering to industry standards

Implement security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration;

preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation

• Verify security systems by developing and implementing test scripts
• Maintain security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses;

developing and conducting training programs

• Upgrade security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements
• Prepare system security reports by collecting, analyzing, and summarizing data and trends
• Update job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities;

reading professional publications; maintaining personal networks; participating in professional organizations

Enhance department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments

Skills and Education

Skills :

• Experience developing enterprise class security architectures in both traditional data center and public / private cloud environments
• Working knowledge of industry best practices for information security
• 2+ years working with one or more cloud service models (Infrastructure as a Service, Platform as a Service, and Software as a Service) and deployment models (public, private, hybrid)
• 2+ years direct experience designing and implementing security solutions for one or more leading cloud providers (AWS, Azure, Google Cloud Platform)
• 2+ years direct experience with leading firewall, VPN, IDS / IPS, endpoint security, and DLP solutions
• Working knowledge of DevOps Security concepts for Continuous Integration / Continuous Delivery environments
• Working knowledge of risk assessments, configuration management, change control, and security baselines and frameworks (NIST CSF, NIST SP 800-171, CIS)
• Vulnerability management experience with Common Vulnerability Scoring System (CVSS), Common Vulnerabilities and Exposures (CVE), and Open Web Application Secure Project (OWASP)
• Expert knowledge of federated identity management, role and access management, and privileged administrative access best practices
• Ability to communicate verbally and in writing with audience appropriate content

Education :

Desired : a minimum of 12 years of related experience with a Bachelor’s degree; or 8 years and a Master’s degree; or a PhD with 5 years experience;

or equivalent experience. Certifications such as CISSP, CCSP, CISM, CCIE Security, and AWS Certified Solutions Architect are a plus.

So get ready to tap into the data visionary within, and join us as we accelerate digital transformation and empower our customers to change the world with data!

Additional Information

All your information will be kept confidential according to EEO guidelines.

J-18808-Ljbffr