---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Application Security Architect
Location: Cincinnati, Ohio, United States
Type: Permanent F/T
Closing Date: 2007-12-26
Technology Information Security Officer:
The Information Security Architect will be a key member of systems development
projects with responsibility to ensure technology risk considerations are
identified and adequately addressed for new system development and application
installations. S/he will: help develop and implement a risk based evaluation
model and linkage of model to the systems development life cycle; ensure proper
technology risk considerations are addressed at each phase of the life cycle
and provide proactive solutions to correct exposures or mitigate risk; balance
level of risk with business requirements to provide optimal solution; interface
with the other Info Security Technology organizations, provide mentoring to
more junior info security professionals, and keep abreast of new threats and
vulnerabilities to systems and the industry to provide proactive solutions.
The Architect will be accountable for researching, designing, engineering,
implementing, and supporting information security systems (
software & hardware) and utilizing in-depth technical knowledge and business
requirements to design & implement secure solutions to meet customer / client
needs while protecting the Bank's assets. She/he will develop and implement
security standards, procedures, and guidelines for multiple platforms and
diverse environments (e.g. client server, distributed, mainframe, etc.). The
individual should demonstrate a passion for and deep understanding of
application security and software quality assurance and will exercise judgment
within broadly defined practices and policies, in selecting methods,
techniques, and evaluation criterion for obtaining results.
JOB REQUIREMENTS
---------------------------------------------------
Qualifications:
Masters Degree or equivalent work experience required.
Proficient in understanding business requirements and in all areas of
technology risk, including: Information Security, Business Continuity, and
Operational Risk. Must have a minimum of 8-12 years in a systems architecture
function with experience in technology risk and Information Security
disciplines. Must have experience in development with web based technologies.
Strong leadership, interpersonal, and communication skills are required. Hands
on system administration and or security administration with at least three of
the following platforms - mainframe, wintel, unix, or network. Proven
experience working under minimal supervision from manager with a strong
commitment to team participation. Must have knowledge of a wide range of
technologies and security best practices. Proven leadership skills and ability
to work with and influence developers, development managers, technology peers,
and business contacts. Must have a good understanding of application security
an
d development processes and proven ability to identify security threats and
learn new areas quickly and to work with subject matter experts in the Bank to
create new security standards and solutions. Other qualifications include:
ability to present ideas to Info Security management and other stakeholders and
research new areas or products.
CONTACT
---------------------------------------------------
Please put "TISO applicant" in subject title.
Citigroup
Rachel Wiesman
Sr. IT Recruiter/Program Manager
rachel.wiesman@citigroup.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
