صاحب العمل نشط
حالة تأهب وظيفة
سيتم تحديثك بأحدث تنبيهات الوظائف عبر البريد الإلكترونيحالة تأهب وظيفة
سيتم تحديثك بأحدث تنبيهات الوظائف عبر البريد الإلكترونيلم يكشف
لم يتم الكشف عن الراتب
Job Title: Principal Architect
Location: Chicago IL (Hybrid)
Job type: FullTime & Contract
Responsibilities:
Design Identity centric Workforce Security solutions to ensure secure and efficient authentication and access management aligned with the industry frameworks and standards (NIST CSF COBIT SOC GDPR etc)
Guides the architectural development of identity solutions access patterns modern security protocols practicing Zero trust least privileged defense in depth principles
Review and provide feedback on Identity Authentication and Access management related security solutions proposed by stakeholders and can provide consultation to the partners and IT Management
Acts as cybersecurity expert to participate in solutions from IAA perspective spanning end user computing proxy solutions MFA SSO conditional accesses device based authentication VPN solutions Desktop virtualization solutions Passwordless Yubikey biometric solutions identity and governance scenarios network segmentations Secrets Management Certificates Management Automation role based access control Privileged identity management end user computing Just in time accesses data protection solutions etc.
Thoroughly understands and provides solutions considering Security technology choices such as design protocols support secrets management data security client server communication token handling Session management credential vaulting OIDC/ OAuth flows authorization patterns identity federation cloud architectures cryptograpgy cloud native services cloud security etc.
Good understanding of Cloud Infrastructure Entitlement Management solution (CIEM) to ensure continuous improvement in Security Posture by providing consultations to application teams
Design target architectures and roadmaps considering IAM security control frameworks and audit requirements
Awareness of Cyber Security Risk management principles and frameworks supply chain risk and third party risk assessment controls
Understanding and application of threat modeling concepts and methodologies
Displays a balanced crossfunctional perspective under information security liaising with other towers and business to help improve Security centric designs
Indepth knowledge and experience on Entra ID EPM Sentinel Azure M365 AWS Security
Knowledge on Okta PingFederate Entitlement management solutions
Indepth knowledge of various cybersecurity frameworks standards and identity governance and administration
Strong knowledge on Identities management on Azure AD with OAuth OIDC SAML SSO MFA Conditional access policies MFA Kerberos LDAP Identity Federations etc.
Experience in providing security solutions for Java based Micro services React based frontends and Android/iOS based mobile applications on the Azure
Handsof experience in JWT session handling Code signing Certificate authentication TLS/SSL API Security Application registration application integration scenarios etc.
Exposure to API Management Firewalls DLP VPNs DNS Azure Defender MCAS Sentinel WAFs Application Gateways NSGs App Proxy Radius clusters CDN etc.
Deeper understanding of Applications security OWASP standards security best practices browser compatibilities/storages/cookies
Deeper understanding on Cloud Security areas such as Policies RBAC activities identities privileged access management etc
Authentication/Authorization/Auditing/Accounting frameworks and handson experience Privilege Identity/access management on the cloud
Ability to support operations in troubleshooting complex identity scenarios with handson experience on Sentinel/KQL/Audit logs etc.
Understanding of IaC CI/CD pipeline automation and vulnerability scanning tools Terraform Powershell bash script Azure CLI
Very good understanding of concepts related to docker Security container orchestartions/Kubernetes mTLS Dapper Service Mesh and security scenarios.
دوام كامل