the identification of risks, threats, vulnerabilities, potential anomalous flows and interactions,
the definition of the security processes for assurance, management and compliance,
the definition of security subsystems, and
the design of integration and deployment architectures for security in Networks, Infrastructure, Middleware, Applications and Systems & Service Management systems.
Wymagania
Three or more years of experience as an Engineer or Architect (Software, Solutions, Network, Security, etc.)
Experience with Incident Response / Operations or addressing breaches, incidents
Experience with forensic analysis – strong critical thinking and analytical skills
Understanding of current software (on-premises), cloud technologies and Software-as-a-Service (SaaS) concepts
Experience developing software and writing code
Business Awareness: You have an understanding about the business that you are trying to secure. For example, working knowledge of cloud technologies, the ability to describe what the security concerns and impact might be for an organization looking to move from on-premises compute to public cloud
Distributed Systems / Software Design: understand the compromises that teams make every day to make things work. Security Architect should have strong influence towards secure implementation and development
Threats, Risks, and Modeling: know the difference between a threat and risk. The ability to understand what organizations need to protect, who they need to protect it from, and how that protection should work
Vulnerabilitiesand Exploitation: the ability to discern between a weakness, flaw, or error found within a system, software, host, etc. which have the potential to be leveraged by an attacker to compromise a network, application, an infrastructure, etc.
Collaboration: being personable, approachable, and empathetic are extremely valuable qualities as a Security Architect. The Security Architect role requires a lot of cooperation and engagement within the organization that they support
