Security Architect

TechnoGen, Inc. (formerly known as SYSCOM Technologies) is a Proven Leader in providing full IT Services, Software Development and Solutions for 12+ years.TechnoGen is a Small & Woman Owned Minority Business with GSA Advantage Certification. We have offices in VA,MD & Offshore development centers in India.We have successfully excuted 100+ projects for clients ranging from small business and non-profits to Fortune 50 companies and federal, state and local agencies.

TechnoGen leadership has experience guiding highly skilled and certified professionals delivering end to end IT and Business consulting services projects in public and commercial sectors across the globe. 

Title: Security Architect

Location: NYC, NY

Duration: Long Term

Required Skills: 

• Solid problem solving and analytical skills; able to quickly digest any issue/problem encountered and recommend an appropriate solution Strategic thinker; visionary; innovative 
• Excellent operational skills; quality and results oriented 
• Demonstrated ability to integrate various security & data protection technologies and controls into a cohesive architecture that sufficiently mitigates risk to the company 
• Deep technical understanding of and experience with security technologies including, but not limited to, intrusion detection/prevention, event correlation, firewall, anti-virus, anti-spam, policy enforcement, patch/configuration management, audit, secure application development, etc. 
• Thorough understanding of the security controls provided in common platforms and applications in the corporate environment including, but not limited to, Unix, Linux, Windows, IBM Mainframe (zTPF, MVS), Oracle, MS SQL Server Microsoft Outlook, J2EE and .NET applications, etc. 
• Experience with federated identity and web services security concepts such as SAML, Liberty ID-FF and ID-WSF, WS-Federation, and WS-Security 
• Experience with TOGAF enterprise architecture and SABSA Security Architecture approach to create one holistic architecture methodology. 
• Experience with SOAP and RESTful web services architectures as 
• Good knowledge of software development principles, and design patterns 
• Experience with continuous integration using one or more of the following build & deployment tools: Ant, Maven, Jenkins, Gradle, Puppet, Chef, Ivy 
• Familiarity with hosted / cloud services and the related security implications and control approaches 
• Ability to communicate clearly end effectively with the technical and business stakeholders 
• Leading and/or participation in teams. 
• Convincingly articulates vision and strategy for complex technical undertakings 
• Ability to use personal influence and communications to align technology to business objectives 
• Self-motivated without the need for signification management oversight Strong analytical and conceptual skills 
• Ability to deal with ambiguity and make expert judgments in situations where no precedent exists 
• Familiarity with the business and its security posture 
• Excellent verbal and written communication skills including the ability to author and present materials ranging from detailed technical specifications to high-level presentations 
• Experience with applicable control frameworks and compliance mandates, including PCI, FISMA, HIPAA, and CoBIT 

Preferred Skills:

• Previous professional services consulting experience 
• CISSP-ISSAP, SSCP, SANS, Cisco CCIE, CCNP or CCSP, Juniper JNCIA, Network+, Security+, etc

Responsibilities:

• Work with network, platform, engineering, and development teams in architecture design and review sessions. 
• Provide specific security expertise to engineering teams. Areas include entitlement design and secure storage design. 
• Develop implementation specifications and plans for identified solutions at a large enterprise level that touch all components of the IT stack to fully define the level of effort and the involvement of the appropriate IT roles. 
• Support the design review of cloud services such as AWS and Azure. 
• Ability to actively participate in design sessions 
• Provide basics design considerations of mobile application architecture, how Apple iOS works, and the common vulnerabilities that can affect mobile devices. 
• Provide expertise on authentication, entitlements, identity management, data leak prevention, data protection, validation checking, encryption, hashing, principle of least privilege, software attack methodologies, etc.

All your information will be kept confidential according to EEO guidelines.