Senior Oracle Cloud Infrastructure Security Architect

November 23

Apply Now

Receive Emails with Similar Jobs

Hybrid Pathways

WebsiteLinkedInAll Job Openings

Enterprise IT Consulting • Public Cloud Infrastructure • Enterprise Networks • Hybrid IT Architecture • IT Security

11 - 50

Description

•With focus on Oracle Cloud Infrastructure (OCI) Security Architecture. •Interview SMEs then develop target state OCI application infrastructure security reference and solution architectures documentation, as well as OCI control compliance and roles & responsibilities documentation. •This is a 11-12-week remote project opportunity. •Work with IAM, Security engineering and Network operations teams to understand target state OCI PaaS and IaaS services. •Guide teams for process and technical control requirements for OCI. •Document security requirements for OCI PaaS and IaaS services. •Develop high level and low-level control designs (security architecture diagrams) •Document future state roles & responsibilities, security engineering and operations staffing levels and compliance.

Requirements

•5 + years IAM and IT GRC and Vulnerability Management experience. •3+ years OCI security architecture and engineering experience. •3+ years demonstrated in network and endpoint security. •Understanding of IAM including SSO, IDMS and IGA practices for enterprises. •Experience designing control and engineering the following OCI security services; •Identity and Access Management •Web Application Firewall •Security Zones •Vulnerability Scanning •Network Firewall •Cloud Guard •Bastion •Data Safe •Access Governance Vault and Key Management •Zero Trust Packet Routing •Ability to interact with IT, application, and business stakeholders to communicate proper security practices. •Experience with current and emerging IT risks and experience implementing security solutions. •Experience developing information security architecture patterns. •Strong understanding of information security capabilities including: •PKI/Cryptography •Authentication •Authorization •Vulnerability and configuration management •Multi-factor authentication, single sign-on, identity & access management, B2B/B2C federation. •Modern authentication (including password-less) •DevSecOps •Identity and Access Management •Federation and Single Sign-On (e.g., SAML, OAuth) •Directory Services Authentication Protocols (e.g., LDAPS, Kerberos, etc.) •API Security including API Gateway Security •User and Entity Behavioral Analytics •Reverse proxy architecture and third-party authentication architecture •Understanding of industry and leading practices including industry standards such as the National Institute for Standards and Technology (NIST) Special Publication (SP) 800-63 and NIST Cybersecurity Framework (CSF) •Experience with major IAM platforms such as: •Microsoft Active Directory •IDS/IPS •NGFW •Packet Aggregation Technology (Network Packet Broker) •SSL decryption technology and PKI •Wireless Security •Web application firewalls and proxies •Endpoint security •Software defined networking security and micro segmentation •Experience working with Enterprise Architecture standards and processes •Experience with regulatory requirements such as PCI, GLBA, HIPAA, and SOX •Proven experience with creation of technical diagrams and documentation •Experience with threat modeling •Excellent written and verbal communication skills •Ability to work as liaison between business and information security/information technology •Experience working with Enterprise Architecture standards and processes •Experience with regulatory requirements such as PCI, GLBA, HIPAA and SOX •Proven experience with creation of technical diagrams and documentation •Experience with threat modeling •Excellent written and verbal communication skills •Ability to work as liaison between business and information security/information technology