Share this Job

Title:  Senior Security Architect

Location: 

Research Triangle Park, NC, US, 27709

Requisition ID:  26185

 

Are you data-driven?  We at NetApp believe in the transformative power of data – to expand customer touchpoints, to foster greater innovation, and to optimize operations.  We are designed for simplicity, optimized to protect, created to embrace future opportunity, and open to enrich choice.  We are the data authority for hybrid cloud, and we are helping our customers realize the full potential of their data.

 

We’ve built a Data Fabric for a data-driven world – to simplify and integrate data management across the resources that are best for the business.  With the Data Fabric, our customers can harness the power of cloud data services, build cloud infrastructures, and modernize storage through data management.

 

By harnessing the power of hybrid cloud data services, customers gain the freedom of choice to securely manage and move data – anywhere, on any cloud. Only NetApp can help organizations deliver data-rich customer experiences when they rapidly test and deploy new applications that easily use data and services regardless of where they reside or in what form.

Job Summary

The Senior Security Architect is responsible for determining security requirements; planning, implementing, and testing security systems; preparing security standards, policies, and procedures; and mentoring team members. He/she also is responsible for designing, building, testing and implementing security systems across NetApp's networks, infrastructure, and cloud based architecture. The Senior Security Architect is expected to have a thorough understanding of complex IT systems and stay up to date with the latest security standards, systems and authentication protocols, as well as best practice security products.

Job Requirements

  • Interpret compliance and security requirements to design implementable and repeatable controls
  • Identify gaps in existing and proposed architectures and security controls and provide recommendations for resolution
  • Contribute to creation and maintenance of Enterprise Information Security policies, standards, and process documentation
  • Coordinate with Enterprise Information Security leadership to create and maintain overall short- and long-term roadmaps
  • Conduct reviews for projects related to infrastructure and general information security to ensure they meet requirements and target-state architectures
  • Participate in risk assessment activities as subject matter expert for infrastructure and general information security concerns
  • Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates
  • Plans security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards
  • Implements security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation
  • Verifies security systems by developing and implementing test scripts
  • Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs
  • Upgrades security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements
  • Prepares system security reports by collecting, analyzing, and summarizing data and trends
  • Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations
  • Enhances department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments

 

Skills and Education

Skills:

  • Experience developing enterprise class security architectures in both traditional data center and public / private cloud environments
  • Working knowledge of industry best practices for information security
  • 2+ years working with one or more cloud service models (Infrastructure as a Service, Platform as a Service, and Software as a Service) and deployment models (public, private, hybrid)
  • 2+ years direct experience designing and implementing security solutions for one or more leading cloud providers (AWS, Azure, Google Cloud Platform)
  • 2+ years direct experience with leading firewall, VPN, IDS/IPS, endpoint security, and DLP solutions
  • Working knowledge of DevOps Security concepts for Continuous Integration/Continuous Delivery environments
  • Working knowledge of risk assessments, configuration management, change control, and security baselines and frameworks (NIST CSF, NIST SP 800-171, CIS)
  • Vulnerability management experience with Common Vulnerability Scoring System (CVSS), Common Vulnerabilities and Exposures (CVE), and Open Web Application Secure Project (OWASP)
  • Expert knowledge of federated identity management, role and access management, and privileged administrative access best practices
  • Ability to communicate verbally and in writing with audience appropriate content

Education:

  • Desired: a minimum of 12 years of related experience with a Bachelor’s degree; or 8 years and a Master’s degree; or a PhD with 5 years experience; or equivalent experience.  Certifications such as CISSP, CCSP, CISM, CCIE Security, and AWS Certified Solutions Architect are a plus

 

So get ready to tap into the data visionary within, and join us as we accelerate digital transformation and empower our customers to change the world with data!

 

If you ask a NetApp employee why they work here, the answer is inevitably the same: the people. At NetApp, our culture is at the heart of what we do. We place importance in trust, integrity, teamwork, and caring above all else. NetApp is a place where people are empowered to make a difference. Empowered to innovate. Empowered to collaborate. Empowered to help ourselves and others be data-driven and change the world. We take care of each other, our customers, our partners, and our communities simply because it’s the right thing to do.

 

We work hard but also recognize the importance of work-life balance for our employees because what’s important to them is important to us!  Recently we implemented Family First, which encourages employees to take paid time off to bond with a new child (through birth or adoption) or to care for a family member with a serious health condition.  Our volunteer time off program is best in class, offering employees 40 hours of paid time off per year to donate their time with their favorite organizations.  We provide comprehensive medical, dental, wellness and vision plans for you and your family.  We offer educational assistance, legal services, and access to discounts and fitness centers. We also offer financial savings programs to help you plan for your future.  

 

Join us and see what empowerment can do.

 

 

Equal Opportunity Employer Minorities/Women/Vets/Disabled


Nearest Major Market: Durham
Nearest Secondary Market: Raleigh

Job Segment: Architecture, Medical, Developer, Cloud, Data Management, Engineering, Healthcare, Technology, Data