Back to Job Search

IT Security Architect

  • Location: Chicago, 60611
  • Salary: 145000.0
  • Job Type:Permanent

Posted about 2 months ago

We have an excellent Direct Hire opportunity for an IT Security Engineer - Architect. Our Chicago based client provides excellent compensation, culture and career growth potential! Please apply today if you have at least 10 years IT Security experience.
  1. Minimum of 10 years engineering/design experience with a mix of the following security platforms is required:  network and application-layer firewalls and secure network design; infrastructure and application-layer vulnerability management, security information and event management (SIEM); Security, Orchestration, Automation and Response (SOAR), data loss prevention (DLP); enterprise encryption solutions for database, file systems and data in motion; Internet/Web Gateway; end point security controls (such as anti-virus, anti-malware XDR, host-based firewall, and full disk encryption solutions); and intrusion detection and prevention systems.  Knowledge of Attack and Penetration methodologies, tools and techniques.
  2. Minimum of 5 years conducting infrastructure and application project design reviews.  Engineering/design experience with a mix of the following infrastructure technologies is required:  Microsoft/Azure (Active Directory (ADFS), O365, SharePoint 2019, Windows Server 2019-2022, Windows 10-11); Red Hat Linux VMware, AWS EC2, S3, IAM.
  3. Working knowledge of network routing and communication frameworks, protocols, and technologies such as OSI, TCP/IP v4 & v6, RIP, OSPF, VPN, HTTPS, TLS, and SSH is required.
  4. Working knowledge of security scanning and analyzing tools; Commercial Application and Infrastructure/Operating System and Opensource Vulnerability scanning/management, and freeware/commercial Wireshark, NMAP, Burp Suite, Nikto, Qualys, Tenable, Snyk, SonarQube
  5. Functional knowledge of identity and access management technologies, including Single Sign-On (SSO), complex federation and Zero Trust concepts are required.
  6. Polished verbal and written communication, interpersonal, analytical, and organizational skills, attention to detail, and a high level of integrity are required.
  7. Experience with project management and software development lifecycle methodologies preferred.
  8. Professional IT Security and IT Audit certifications such as CISSP, CISM, CEH, CISA and/or technical certifications preferred.
  9. Experience with IT Infrastructure Library (ITIL) – particularly incident, change, release, and/or problem management preferred.
  10. Experience with IT security standards, such as CIS Top 20, ISO 27001, NIST CSF, NIST 800-53, HITRUST, MITRE, OWASP, CWE/SANS Top 25 Programming Errors, and attestation reports such as SOC 1/2/3 and technology risk management methodologies, such as NIST 800-30 preferred.
  11. Experience with compliance standards such as Payment Card Industry (PCI), Sarbanes Oxley (SOX) and Health Insurance Portability & Accountability Act (HIPAA) preferred.
  12. Working knowledge of SQL, LDAP, and/or regex is a plus.

 

Additional Technical Background

  1. Experience with:
    1. Cloud-based security tools (CloudTrail, WAF, Security Center, etc.)
    2. Source code management tools (GitHub, BitBucket, etc.)
    3. Code scanning tools (Dynamic, Static and Opensource)
    4. Vulnerability Management solutions (Qualys, Tenable)
  2. Knowledge of:
    1. User authentication such as Zero Trust concepts, SAML and OAuth-based SSO architectures and IDP integrations, MFA, Virtual Private Networks (VPNs), TLS, PAM, corporate wifi, device identity, 802.1x port-based authentication, server identification, authentication of web applications, S/MIME Email Signing, is desirable
    2. Programming languages (.Net, Java, JavaScript, Angular, Drupal, Python, etc.)
    3. Web services, API, REST, RPC
    4. Infrastructure as Code (CloudFormation, Terraform) preferred
    5. Administration of Azure suite, including; Azure Active Directory, Conditional Access, Intune, Mobile Application Management, Microsoft Cloud App Security and/or advanced Azure security services like Azure Security Center, Advanced DDoS Protection, Azure Firewall, and Azure WAF
    6. Administration of AWS security services and related best practices: GuardDuty, Cognito, Inspector, Detective and advocate AWS Identity & Access Management (IAM)
    7. Operating systems: Windows, Mac, Linux, WVD, VDI and Jump Boxes/Bastion Servers

Candidates will be responsible for following the client's COVID-19 protocols. Please refer to your MATRIX representative for specifics.

About Us

At MATRIX, we expertly match talented professionals with job opportunities to elevate careers. Since 1983, we have placed thousands of professionals at innovative clients across every industry ranging from small startups to Fortune 50 companies. It’s why we’re consistently in the top 25 of all U.S. IT staffing firms and why our consultants rate us well above the industry average, earning us ClearlyRated's Best of Staffing awards year after year. People come to us for a job, and stay with us because of our top-notch consultant care.

MATRIX is and Equal Employment Opportunity employer including disability and veteran and provides reasonable accommodations for all qualified individuals.  Supporting medical or religious documentation will be required where applicable. If you are a qualified individual you may request a reasonable accommodation under the American Disability Act (ADA). If you are a person with a disability needing assistance applying, or at any point in the hiring process, please email us at MATRIX_HR@MatrixRes.com. To ensure a quick response to your request, please use the words “Accommodation request” as the subject line of your email.