Fortune 500 Application Security Architect HYBRID based inGA or AL

Our Fortune 500 Company clientis seeking to DIRECTLY HIRE a talented Application SecurityArchitect.

CANDIDATESUBMISSION REQUIREMENTS : (Please read carefully beforeapplying)

Inorder to receive consideration for an interview referral submissionto our clients Hiring Manager for this role each candidate must bereasonably qualified and comply with the followingrequirements :

1)Our client doesnt provide any sponsorships so you must PRESENTLY bepermanently authorized to work in the U.S. WITHOUT requiring anycurrent or future sponsorship (i.

e. U.S. citizen or permanentresidentcardholder).

2)This is a Hybrid role with expectations to come to the office 20%.You must be within commutable distance to either Atlanta GA orBirmingham AL.

3)You must apply with both your current resume AND also your fullresponses to the Hiring Managers Screening Questions shownBELOW.

• Yourresume must clearly show your personal email address and directphonenumber.
• Youmust fully and accurately respond to ALL of the screeningquestions.
• Yourresume and your responses to the screening questions shouldpreferably be included in a SINGLE (Word or PDF) document ifpossible.

4)Send the requested information to MPN Diversity Recruiters byeither clicking on the APPLY button or via email to .

JOBSUMMARY :

OurFortune 500 Company client is seeking an experienced securityarchitect and technical leader to design creative solutions andreduce risk.

The candidate will directly support the company sefforts to mitigate real and potential cyber threats to the companys facilities personnel technology operations and brand includingcritical electric and gas utility infrastructure and its privatelyowned telecommunications network.

In this role the potential forindividual impact is substantial and has high visibility within thecorporate leadership andgovernance.

Thisrole will have responsibility for setting the strategic directionfor the Enterprise Security Architecture teams in the areas ofApplication and Cloud Security and then execute projects againstthe strategic roadmap.

This position is primarily focused onApplication and Code Security but does touch other security domainsas well. Interested applicants should be well rounded in theirunderstanding and application of different security and technologyplatforms;

in areas such as identity networking endpoint datamonitoring cloud and / or application security. Qualified candidatesneed to be able to align strategy and execution to increasecybersecurity maturity anticipate future requirements for complextraditional hybrid and multicloud environments drive initiativesvia influence and relationships into business processes keep upwith current security trends be focused on results and be aselfstarter.

Thisposition is responsible for ensuring the confidentiality integrityand availability of the company s information assets.

This will beaccomplishedby :

Establishingand implementing an information security framework and technicalarchitecture.

Designing developingand implementing information securityproducts.

Providing informationsecurity expertise andconsulting.

WhileFortune 500 Company is headquartered in Atlanta we bring energy tohomes and businesses across the country. We ve made our name as aleading producer of clean safe reliable and affordable energy andwe approach each day as a vital step in building the future ofenergy.

We re always looking ahead and our innovations in theindustry from new nuclear to deployment of electric transportationand renewables help brighten the lives and businesses of millionsof customers nationwide.

Our team is critical to building thefuture of energy with secure resilient and sustainable cybersolutions.

JobResponsibilities :

• Alignforward thinking strategy with business goals to integrate andraise the bar on security practices andsolutions.
• Assistin the ongoing development of Fortune 500 Companys securityarchitecture identify areas of opportunity research alternativesand recommendsolutions.
• Developcreative solutions to meet business needs while ensuringappropriate security controls and best practices areimplemented.
• Partnerwith others to identify and resolve information securityissues.
• Plancoordinate and lead information securityprojects.
• Helpcustomers understand and apply information security conceptsprocesses andtechnologies.
• Maintaincurrent knowledge of information security concepts technologies andpractices.
• Mentorothers to strengthen cybersecurity principles and best practices tooutside operational areas.
• Establishand maintain excellent working relationships and partnershipsacross the Technology Organization functions business partners andexternal vendors andsuppliers.
• Createan environment that fosters accountability innovation andengagement at alllevels.
• Streamlinethe software development lifecycle to reduce applicationvulnerabilities improve developer productivity and codequality.

Education / Experience :

• Experiencewith software development and programing code reviews andapplication vulnerabilityremediation.
• Experiencewith network infrastructure modern operating systems databaseapplications web applications and other computingtechnologies
• Handsonexperience designing architecting and implementing variousinformation security tools / products such as PKI Static or DynamicCode Analysis NextGeneration Firewalls HSM s SIEM MultiFactorAuthentication IPS NetFlow Monitoring Full Packet Capture DatabaseEncryption Privileged Identity Management Cloud Posture Managementetc.
• Abilityto lead a project from concept through implementation andanticipate potentialproblems.
• Comprehensiveknowledge and understanding of information security concepts andbest practices (NIST COBIT ISO PCI OWASPetc)
• Abilityto perform detailed information security risk assessments andrecommend mitigatingcontrols.
• Experiencepromoting security as a business enablement function through theuse of documentation metrics and strong verbalcommunication.
• Industrycertification preferred (CISSP CCSP CISA GIACetc)

Requirementsand qualifications :

Minimum

• Experiencewith software development and programing code reviews andapplication vulnerabilityremediation.
• Strongtechnical knowledge of application development practices CI / CDpipelines various cloud platforms including Azure AWS or GCP modernoperating systems networking protocols and designs and identitymanagement.
• Experiencewith development platforms and CI / CD tools such as TFS / ADO / Git orJenkins.
• Proficiencyin one or more coding languages such as C# Python Java or JavaScript
• Experiencepromoting security as a business enablement function usinginfluence metrics documentation strong verbal communication andpresentationskills.
• Atleast 5 years of work experience playing a key role in buildingtechnicalprograms.
• Abilityto lead a project from concept through implementation andanticipate potentialproblems.
• Experienceprioritizing and executing with minimal direction oroversight.
• Mustpass NERC CIP & Insider Threat Protection backgroundchecks.

PreferredQualifications

• Developmentor Programmingbackground.
• AzureAWS and GCP certificationspreferred.
• Competencyin APIs (Rest Graph) and / orJavaScript / JSON / Kubernetes / SQL.
• Industrycertifications such as : CISSP CCSP CISA GIAC OSCP CRISC CCNPetc.
• Experiencewith information security frameworks such as : COBIT NIST OWASPetc.
• Familiaritywith nation state sophisticated criminal and supply chainthreats.
• Uptodateknowledge of current hacking techniques vulnerability disclosuresand data breachincidents.
• Workingknowledge of cloud and traditional security networkarchitectures.
• Experiencewith cybersecurity analysis and analytictradecraft.

PRESUBMISSIONSCREENING QUESTIONS (Responses Required for InterviewConsideration) :

Pleaseanswer ALL of the questions BELOW as accurately as possible. Ifyoure determined to be reasonably qualified you will be submittedto our client for a potential interview and direct hiringconsideration for this greatopportunity.

1)How would you describe your technologybackground

2)Describe your experience partnering with teams outside of securityto reduce a company s riskposture.

3)What s the goal of information security within anorganization

4)How would you measure how well a security team isdoing

5)What do you think are some of the most important technology trendsrightnow

6)What will be the biggest challenge faced by cybersecurityprofessionals in the nextyear

7)Describe your previous experience securing applications via codeboth on prem and in thecloud.

8)We provide a competitive compensation package to include a basesalary incentive pay (bonus) and comprehensive benefits whichinclude a pension plan and matching 401(k) plan.

Specifically whatare your base salary requirements (Do not state negotiable or N / A;if need be list arange)

9)Are you permanently authorized to work in the U.S. WITHOUTrequiring any current or future sponsorship (e.g. U.S. citizenpermanent resident) Please reply with one of the followingoptions :

a)I am a U.S. citizenor

b)I am a permanent resident card (i.e. green card) holderor

c)None of theabove.

Ifyoure not able to edit your resume (i.e. because its a PDF) to addthe HMSQ responses please send your resume and the responses to thescreening questions (in a separate document or message) and we willmerge them foryou.

Callifyou have anyquestions.

EDUCATIONREQUIREMENTS

BachelorsDegree

SALARY

$120K$140K (DOE) plus 25%Bonus

Cloud Architect, Application Security Architect, softwaredevelopment, programing, code reviews, network infrastructure,modern operating systems, database applications, webapplications