Cloud Security Architect
Company: Entergy
Location: Jackson
Posted on: April 24, 2024
|
|
Job Description:
Cloud Security Architect
Date: Apr 3, 2024
Location: The Woodlands, Texas, United States
Company: Entergy
Posting End Date: 01/09/2024
Work Place Flexibility: Hybrid
Legal Entity: Entergy Services, LLC
THIS IS A HYBRID POSITION (Remote & Onsite)
This position will be filled as a Security Architect or Security
Architect Sr depending on qualifications and experience of the
candidate
This position may be filled in The Woodlands TX, New Orleans LA,
Jackson MS, or Little Rock AR. Other locations within Entergy's
service territory may be considered
Job Summary
The Cloud Security Architect utilizes their knowledge of IT and
cybersecurity engineering to lead and/or participate in the
development of assigned projects or solutions. The Cloud Security
Architect focuses on implementing security requirements for
assigned projects and solutions while maintaining compliance with
internal and externals policies and regulations.
The Cloud Security Architect works closely with the Enterprise
Security Architect to ensure projects and solutions are consistent
with Entergy's Cybersecurity strategy and roadmap. The Cloud
Security Architect provides clear and concise direction to project
stakeholders and acts as the "face" of Cybersecurity for those
teams.
Key Responsibilities
Oversee cloud security solutions across lifecycle strategy, design,
implementation, and operations
Participate, lead, and jointly deliver security evaluation reports
on cloud platform providers, cloud native platforms (PCF, Docker,
Kubernetes, etc.), and Software as a Service solutions
Establish security requirements for cloud-based solutions by
evaluating business strategies and requirements, researching cloud
infrastructure security standards such as NIST CSF and NERC CIP
Provide domain expertise in both public and private cloud and
enterprise technology
Identify and deliver appropriate controls based on industry
standards (e.g. CCM) to drive cloud security solutions framework
based on business risk and cloud native threats
Continually evaluate new threats in the cloud, to identify the
impact on Technology and Business to develop and implement security
controls
Provide recommendations for improvement and risk reduction by
assessing clients' cloud security posture; and act as a change
agent with customer organizations to oversee the vulnerability
improvements with our clients' existing Technology staff as well as
3rd party vendors support our clients (most often managed
Technology service providers)
Utilize Cybersecurity reference architectures to develop secure
solutions and designs for projects
Provide input to policies, procedures, standards, processes, and
templates that are consistent with the Cybersecurity strategy and
roadmap
Participate in security and non-security projects to ensure that
security requirements are defined and implemented
Perform assessments and threat modeling of existing and emerging
technologies to ensure they meet Entergy security and compliance
requirements
Evangelize and advocate for Cybersecurity with stakeholders
Monitor emerging trends in Cybersecurity and technology and make or
suggest changes to Entergy's security posture as necessary
Experience needed
Security Architect Sr: 5+ years of full-time dedicated experience
in Cloud Security roles focused on delivering security on cloud
native, distributed architectural solutions in complex
environments
Security Architect: 3+ years of full-time dedicated experience in
Cloud Security roles focused on delivering security on cloud
native, distributed architectural solutions in complex
environments
Experience in defining security standards and reference
architectures used to guide technical resources in secure system
implementation and configuration for enterprise cloud systems and
consumption of public cloud is a plus
Familiarity with predominant public cloud providers
Understanding of Industry trends in cloud technologies for public,
private and hybrid cloud deployments
Experience working with outsourced teams
Experience in working in partnership with colleagues throughout the
enterprise
Education needed
Bachelor's degree in computer science, cybersecurity, information
systems, engineering or a related discipline or equivalent work
experience. Master's degree is a plus.
Minimum Knowledge, Skills, and Abilities needed
Familiarity with technologies commonly utilized within an
enterprise IT and OT environment
Strong knowledge of multiple information security domains with an
emphasis in Cloud services
Operating systems (*nix, Windows, IOS, etc.)
Networking and network security
APIs
Secure coding/application security
Vulnerability Management
SIEM
Identity and Access Management
Penetration testing
Scripting (Python, PowerShell, Perl, etc.)
Security process and control development
Endpoint protection technology
OT systems and protocols
Some knowledge of Cybersecurity regulations and guidance such as
NIST, FISMA & ISO27001
Familiarity with The Open Group Architecture Framework (TOGAF),
Open Web Application Security Project (OWASP), Open Security
Architecture, National Institute of Standards and Technology (NIST)
Cloud Computing Reference Architecture, or other architecture
frameworks
Able to be hands-on with technical engineering and process
management skills and the ability to advocate positive
transformation within the broader information technology
organization
Able to design & develop reference architectures
Able to design and develop an API based services layer for
consistent integration with the security systems
Knowledge of security, risk, and control frameworks and standards
such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and
ITIL
Strong writing and analytic ability
Strong ability to communicate across the enterprise concisely and
effectively
Available to travel
Self-motivated, with the ability to manage and follow up on
multiple tasks simultaneously
Capable of meeting deadlines
Organizational and time management skills
Certifications
ISACA or ISC2 certification, such as CISSP, CISM, CISA are a
plus
OSCP is a plus
#LI-JL1
#LI-HYBRID
Primary Location: Texas-The Woodlands Texas : The Woodlands --
Arkansas : Little Rock -- Louisiana : New Orleans -- Mississippi :
Jackson -- Texas : Houston
Job Function : Professional
FLSA Status : Professional
Relocation Option: No Relocation Offered
Union description/code : NON BARGAINING UNIT
Number of Openings : 1
Req ID: 114206
Travel Percentage :Up to 25%
An Equal Opportunity Employer, Minority/Female/Disability/Vets.
Please clickhere
(https://jobs.entergy.com/content/EEO/?locale=en_US) to view the
EEI page, or see statements below.
EEO Statement: The Entergy System of Companies provides equal
employment opportunities (EEO) to all employees and applicants for
employment without regard to race, color, religion, sex, gender,
sexual orientation, gender identity or expression, national origin,
age, disability, genetic information, marital status, amnesty, or
status as a protected veteran in accordance with applicable
federal, state and local laws. The Entergy System of Companies
complies with applicable state and local laws governing
non-discrimination in employment in every location in which the
company has facilities. This policy applies to all terms and
conditions of employment including, but not limited to, recruiting,
hiring, placement, promotion, termination, layoff, recall,
transfer, leaves of absence, compensation, and training.
The Entergy System of Companies expressly prohibits any form of
unlawful employee harassment based on race, color, religion, sex,
gender, sexual orientation, gender identity or expression, national
origin, age, genetic information, disability, or veteran status.
Improper interference with the ability of the Entergy System of
Company employees to perform their expected job duties is
absolutely not tolerated.
Accessibility: Entergy provides reasonable accommodations for
online applicants. Requests for a reasonable accommodation may be
made orally or in writing by an applicant, employee, or third party
on his or her behalf. If you are an individual with a disability
and you are in need of an accommodation for the recruiting process
please click here (humanr@entergy.com?subject=Accessibility) and
provide your name, contact number, the accommodation requested and
the requisition number that you are requesting the accommodation
for. Employee Services will contact you regarding your request.
Additional Responsibilities: As a provider of essential services,
Entergy expects its employees to be available to work additional
hours, to work in alternate locations, and/or to perform additional
duties in connection with storms, outages, emergencies, or other
situations as deemed necessary by the company. Exempt employees may
not be paid overtime associated with such duties.
Entergy Pay Transparency Policy Statement: The Entergy System of
Companies (the Company) will not discharge or in any other manner
discriminate against employees or applicants because they have
inquired about, discussed, or disclosed their own pay or the pay of
another employee or applicant. However, employees who have access
to the compensation information of other employees or applicants as
a part of their essential job functions cannot disclose the pay of
other employees or applicants to individuals who do not otherwise
have access to compensation information, unless the disclosure is
(a) in response to a formal complaint or charge, (b) in furtherance
of an investigation, proceeding, hearing, or action, including an
investigation conducted by the employer, or (c) consistent with the
Company's legal duty to furnish information. 41 CFR 60-1.35(c).
Equal Opportunity
(https://www.dol.gov/agencies/ofccp/manual/fccm/2l-equal-opportunity-clauses-and-other-requirements/2l00-equal-opportunity)
and Pay Transparency
(https://www.dol.gov/sites/dolgov/files/OFCCP/pdf/pay-transp_%20English_formattedESQA508c.pdf)
.
Pay Transparency Notice:
Pay Transparency Nondiscrimination Provision (dol.gov)
(https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf)
The non-confidential portions of the affirmative action program for
individuals with disabilities and protected veterans shall be
available for inspection upon request by any employee or applicant
for employment. Please contact HRCompliance@entergy.com to schedule
a time to review the affirmative action plan during regular office
hours.
WORKING CONDITIONS:
As a provider of essential services, Entergy expects its employees
to be available to work additional hours, to work in alternate
locations, and/or to perform additional duties in connection with
storms, outages, emergencies, or other situations as deemed
necessary by the company. Exempt employees may not be paid overtime
associated with such duties.
Please note: Authorization to work in the United States is a
precondition to employment in this position. Entergy will not
sponsor candidates for work visas for this position.
Job Segment: Cloud, Developer, Cyber Security, Network Security,
Technology, Security
Keywords: Entergy, Jackson , Cloud Security Architect, Professions , Jackson, Mississippi
Click
here to apply!
|