ENTERPRISE SECURITY ARCHITECT

About 2Chi Consulting

We are more than just a consulting firm, we are your trusted partner in navigating the complexities of the digital world. We are dedicated to empowering businesses with cutting-edge IT consulting services that drive growth and innovation. Estabished with the objective of adding value, exceeding expectations, and developing solid, long-term relationships with customers and partners. We pride ourself as leader in providing cutting-edge solutions in the field of telecommunications, business analysis and optimisation, product design, delivery and cyber security.

We are more than just a consulting firm, we are your trusted partner in navigating the complexities of the digital world. We are dedicated to empowering businesses with cutting-edge IT consulting services that drive growth and innovation. Estabished with the objective of adding value, exceeding expectations, and developing solid, long-term relationships with customers and partners. We pride ourself as leader in providing cutting-edge solutions in the field of telecommunications, business analysis and optimisation, product design, delivery and cyber security.

Key Responsibilities:

• - Develop and maintain the overall enterprise security architecture, including security policies, standards, and guidelines.
• - Design and implement security solutions across various domains, including network security, cloud security (AWS, Azure, GCP), endpoint security, application security, data security, and identity and access management (IAM).
• - Provide hands-on technical expertise and guidance to security and IT teams during the implementation and deployment of security solutions.
• - Conduct security assessments and risk analyses to identify vulnerabilities and recommend appropriate mitigation strategies.
• - Define and enforce security controls and best practices across the enterprise.
• - Lead the evaluation and selection of security technologies and vendors.
• - Develop and maintain security reference architectures and patterns.
• - Participate in incident response activities, providing technical expertise and guidance.
• - Ensure compliance with relevant security regulations and standards (e.g., ISO 27001, SOC 2, GDPR, NIST).
• - Collaborate with development teams to integrate security into the software development lifecycle (DevSecOps).
• - Stay abreast of the latest security threats, trends, and technologies, and proactively recommend security enhancements.
• - Communicate complex security concepts effectively to both technical and non-technical audiences.
• - Mentor and guide junior security team members.

Required Skills and Experience:

Education: Degree in Computer Science, Software Engineering, or a related field.

Experience: Minimum of 8 years of progressive work experience in different sectors, demonstrating a broad understanding of diverse security challenges and solutions. This experience should include significant hands-on involvement in security implementation.

Security Architecture Expertise: Proven experience in designing and implementing enterprise-level security architectures.

Hands-On Technical Skills: Demonstrated hands-on experience with a range of security technologies and tools, such as:

• - Firewalls and Intrusion Prevention/Detection Systems (IPS/IDS)
• - Security Information and Event Management (SIEM) systems
• - Vulnerability scanning and penetration testing tools
• - Cloud security platforms and services (AWS Security Hub, Azure Security Center, GCP Security Command Center, etc.)
• - Identity and Access Management (IAM) solutions
• - Endpoint Detection and Response (EDR) tools
• - Data Loss Prevention (DLP) solutions
• - Application security testing tools (SAST/DAST)

Cloud Security: Deep understanding and hands-on experience securing cloud environments (AWS, Azure, GCP).

Security Frameworks and Standards: Strong knowledge of security frameworks and standards (e.g., NIST, ISO 27001, SOC 2).

Risk Management: Proven ability to conduct risk assessments and develop mitigation strategies.

Compliance: Understanding of relevant security regulations and compliance requirements.

Problem-Solving: Excellent analytical and problem-solving skills with the ability to troubleshoot complex security issues.

Communication: Strong written and verbal communication skills, with the ability to articulate technical security concepts to diverse audiences.

Collaboration: Ability to work effectively with cross-functional teams.

Continuous Learning: A proactive approach to staying updated on the latest security threats and technologies.

Preferred Skills (Beneficial but not essential):

• - Relevant security certifications (e.g., CISSP, CISM, CCSP).
• - Experience with DevSecOps practices and tools.
• - Scripting and automation skills (e.g., Python, PowerShell).
• - Experience with threat intelligence platforms.

What We Offer:

• - The opportunity to work on challenging and impactful projects for a diverse range of clients.
• - A collaborative and supportive work environment with a focus on continuous learning and professional development.
• - Opportunities to expand your cybersecurity expertise and gain exposure to cutting-edge technologies.
• - A competitive salary and benefits package.
• - The chance to be part of a growing and respected cybersecurity consultancy.

If you are a highly motivated and results-oriented Enterprise Security Architect with a passion for hands-on implementation and a proven track record of securing complex environments, we encourage you to apply!

To Apply:

Please submit your resume and a cover letter outlining your relevant experience and why you are the ideal candidate for this role to 2chiconsulting@gmail.com.

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.