Job Details

Cyber Security Architect

Software Guidance & Assistance
Farmington, Michigan, United States
Software Guidance & Assistance, Inc., (SGA), is searching for an Cyber Security Architect for a Contract assignment with one of our premier Financial Services clients in Farmington Hills, MI. Providing a secure and trustworthy customer journey is one of our most important objectives. In order to expand our cybersecurity capabilities, our client is seeking an Architecture Security Specialist to execute the global AE strategy consistently across the region. The Application Security Specialist will report directly to the Architecture and Engineering Lead.
The main objective for the Architecture Security Specialist is to deploy and operate application security capabilities, solutions and requirements, and Secure Profiling Services to Critical applications. This includes code reviews and application focused attack and penetrating testing to support the identification and remediation of application-level vulnerabilities to meet risk management needs and business requirements.

  • Application Security: Deploy and operate application security capabilities, solutions and requirements consistently across the region.
  • Systemically identify and document application level vulnerabilities
  • Communicate identified vulnerabilities and recommended mitigation strategies
  • Coordinate with the markets and monitor remediation activities.
  • Provide guidance and recommendations for remediating application vulnerabilities
  • Track and report on remediation status.
  • Facilitate and deliver targeted application security training.
  • Identify and document threats using STRIDE and other DFS techniques for critical applications
  • Provide recommendation for the identified threats
  • Coordinate and Maintain the list of remediation activities

Required Skills:
  • Bachelor's or Master's degree in Computer Science, Information Systems, Engineering, Information Security, Cybersecurity or a related field is required.
  • Minimum 10 years of relevant work experience in cybersecurity architecture and engineering.
  • Experience with a wide variety of Threat Modelling tools and other tools to include:
    • o Microsoft Threat Modelling Tool
    • o RedSeal
    • o CheckMarx
    • o Fortify
    • o Burp Suite
    • o ThreatModeler
    • o IriusRisk
    • o securiCAD
    • Experience in developing and implementing countermeasures to identified application security risks.
    • Experience interacting with development teams to articulate security requirements and processes while collaborating on architecture and engineering design options, implementation, testing and user acceptance.
    • Experienced in Threat Modelling including creation of Data Flow Diagrams
    • Experience identifying, evaluating and managing risk in a complex and changing environment.
    • Requirements/Knowledge
    • Must have knowledge on interpreting architectural blueprints for Datacenter and Cloud (IaaS, PaaS, SaaS etc.).
    • Experienced in Threat Modelling including creation of Data Flow Diagrams
    • Advanced ability to identify security vulnerabilities form source code reviews and application & Infrastructure testing.
    • Highly proficient in the configuration and deployment of applications in complex environments.
    • Working knowledge of NIST, Open Web Application Security Project (OWASP) and Open Source Security Testing Methodology Manual (OSSTMM).
    • Solid ability to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
    • At least one of the following certifications is required: CISSP, CSSLP, or ISSAP.

SGA is a Certified Women's Business Enterprise (WBE) celebrating over thirty years of service to our national client base for both permanent placement and consulting opportunities. For consulting positions, we offer a variety of benefit options including but not limited to health & dental insurance, paid vacation, timely payment via direct deposit. SGA accepts transfers of H1 sponsorship for most contracting roles. We are unable to sponsor for Right-to-Hire, Fulltime, or Government roles. All parties authorized to work in the US are encouraged to apply for all roles. Only those authorized to work for government entities will be considered for government roles. Please inquire about our referral program if you would like to submit a candidate for any of our open or future job opportunities. SGA is an EEO employer. We encourage Veterans to apply. To view all of our available job postings and/or to learn more about SGA please visit us online at .

- provided by Dice

Send application

Mail this job to me so I can apply later

Apply With CV

You are not logged in. If you have an account, log in to your account. If you do not have an account, why not sign up? It only takes a minute!

latest videos

Upcoming Events