|Published||September 17, 2023|
|Location||New York, NY|
CTG is seeking to fill a Cybersecurity Solutions Architect opening for our client in Buffalo, New York.
Location: Buffalo, NY
Duration: 6 months, with potential for extension
This role is focused specifically on the review of controls on any data that is used in test environments. It does require a high level of interaction with business teams and application owners. Cybersecurity expertise is required, verbal and written communication skills are also very important. The steps involved are to evaluate the controls that are in scope to protect the data (encryption, access controls, etc.), determine if they are inherited as part of the environment the data resides or if they need to be manually implemented. With the controls defined, the person in this role would then interview the application owners to determine the state of compliance. They then turn over their analysis to our controls testing team that conducts validation testing.
Leads a security practice focused on specialized assessment of security controls for systems and applications. Leverages a risk-based approach to ensure appropriate security principles and controls are applied during the system development life cycle to meet stakeholder objectives and protect customer and corporate assets in line with enterprise risk appetite.
•Obtain a basic understanding of enterprise architecture to identify security gaps, develop controls and design solutions meeting business objectives while complying with security standards.
•Recommend security controls required to protect confidentiality, integrity and availability of customer and corporate data in line with the enterprise risk appetite based on Bank policy and standards.
•Document and verify recommended security controls are aligned with Bank policies and standards as well as industry best practices; ensure proper documentation of exceptions to standards and/or recommend mitigating controls.
•Prepare required systems and applications security documentation, ensuring alignment with applicable laws, regulations, Bank policies and standards, as well as industry best practices. Present and explain standards relevant to projects and need for compliance.
•Communicate required systems and applications security controls to owners or technical leads, ensuring alignment with applicable laws, regulations, Bank policies and standards, as well as industry best practices.
•Engage with other Solutions Architects and Technology teams to identify security risks of proposed projects and recommend system and application modifications.
•Remain current with industry trends and security threats.
•Understand and adhere to the Company's risk and regulatory standards, policies and controls in accordance with the Company's Risk Appetite. Identify risk-related issues needing escalation to management.
Education and Experience Required:
•Minimum of 2 years higher education and 3 years relevant work experience, or in lieu of a degree, a combined minimum of 5 years higher education and/or work experience, including a minimum of 3 years relevant work experience.
•Basic knowledge of cybersecurity principles and organizational requirements relevant to confidentiality, integrity, availability.
•Basic understanding of information technology security principles.
•Basic knowledge of security controls.
•Experience working in a group environment and completing tasks in a timely fashion.
Education and Experience Preferred:
•CISSP (Certified Information Systems Security Professional) or CRISC (Certified Risk and Information Systems Control) certification or Cybersecurity domain-related industry-recognized certification.
•Willing to learn in a fast-paced environment.
•Basic experience with information technology security concepts and technologies.
•GIAC Security Essentials (GSEC), Certified Ethical Hacker (CEH), Security + certification or related certification.
•Basic knowledge of security technologies and architecture, including at least two of the following: encryption, cloud network security design, Role Based Access Control, perimeter security and application security.
•Basic understanding of how to protect information systems from cybersecurity threats.
Excellent verbal and written English communication skills and the ability to interact professionally with a diverse group are required.
CTG does not accept unsolicited resumes from headhunters, recruitment agencies, or fee based recruitment services for this role.
The expected base salary for this position ranges from $58,505 to $114,189. Salary offers are based on a wide range of factors including relevant skills, training, experience, education, market factors, and where applicable, licensure or certifications obtained. In addition to salary, a competitive benefit package is also offered.
To be considered, please apply directly to this requisition using the link providedFor additional information, please contact Laura Dominguez at 716-887-7203 or [Click Here to Email Your Resumé]. Kindly forward this to any other interested parties-thank you!
CTG is a leading provider of digital transformation solutions and services that accelerate clients' project momentum and achievement of their desired IT and business outcomes. Our vision is to be an indispensable partner to our clients and the preferred career destination for digital and technology experts. CTG has operations in North America, South America, Western Europe, and India. For more information, visit www.ctg.com.
Our culture is a direct result of the people who work at CTG, the values we hold, and the actions we take. In other words, our people are the culture. It's a living, breathing thing that is renewed every day through the ways we engage with each other, our clients, and our communities. Part of our mission is to cultivate a workplace that attracts and develops the best people, reflected by our recognition as a Great Place to Work-certified company across many of our global operations.
CTG will consider for employment all qualified applicants including those with criminal histories in a manner consistent with the requirements of all applicable local, state, and federal laws.
CTG is an Equal Opportunity and Affirmative Action Employer. CTG will assure equal opportunity and consideration to all applicants and employees in recruitment, selection, placement, training, benefits, compensation, promotion, transfer, and release of individuals without regard to race, creed, religion, color, national origin, sex, sexual orientation, gender identity and gender expression, age, disability, marital or veteran status, citizenship status, or any other discriminatory factors as required by law. Our Affirmative Action program serves to promote occupational equality and diversity through good faith efforts. CTG is fully committed to promoting employment opportunities for members of protected classes.