Cyber Security Architect

PacifiCorp is seeking customer-centric candidates to grow and sustain our commitment to a culture of customer service excellence, environmental sustainability and diversity, equity and inclusion.

General Purpose

The cyber security architect - cloud security, is responsible for advanced planning and design of cloud security systems, cloud applications, environments, and architectures; oversees the implementation of cloud security systems, applications, environments, and architectures and ensures compliance with information security standards and corporate security policies and procedures. Provides technical advice and direction to support the design and development of secure cloud architectures. May participate in an incident management team, bringing advanced-level skills to respond to security events in line with incident response playbooks. Evaluates existing and proposed technical architectures for security risk, provides technical advice to support the design and development of secure architectures and recommends security controls to mitigate those risks. Evaluations of internal security architecture may include design assessment, risk assessment, and threat modeling. Brings advanced-level skills to research, evaluate, track, and manage cloud security threats and vulnerabilities in situations where in-depth analysis of ambiguous information is required, and where computer programming and scripting knowledge is required. Work with Senior management to develop and implement a multi-year cloud security roadmap

Responsibilities

• Represent the office of the Chief Security Officer in evaluating technology initiatives and projects to determine advanced cybersecurity requirements and controls necessary to comply with company policies, standards, and industry best practices.
• Engage with senior IT and business leaders and the CSO to address complex design considerations to appropriately manage risk on behalf of the company.
• Align cloud solutions with industry security standards and frameworks and cloud security best practices.
• Evaluate, design, and develop cloud security solutions to address business problems.
• Recommend changes to existing controls and systems.
• Provide creative and innovative solutions that bridge the gap between requirements and cloud capabilities.
• Participate in full solutions lifecycle including engaging with key business stakeholders to understand requirements, performing business analysis and relaying feedback to development partners to improve future offerings.
• Demonstrate flexibility and resilience in response to changing or ambiguous situations.
• Evangelize security and application solutions and controls by creating and communicating presentations both internally and externally.
• Participate in a DevSecOps like environment to support the business and customers in adopting cloud infrastructure.
• Stay current on industry trends and cloud provider capabilities
• Maintain a rigorous connection to evolving solutions within cloud technologies.
• Support escalations from Security Operations Center Analyst team requiring cloud-specific expertise.
• Maintain strong understanding of networks and topography across the business to ensure adequate defense in depth design across the enterprise.
• Assist in complex forensic and investigation activities as needed.
• Provide timely and accurate cross-platform support in response to security threats that may arise that poses a risk to systems across the company's computing enterprise.
• Performs any additional responsibilities as requested or assigned.
  

Requirements

• Bachelor’s degree in Computer Science, Information Technology or related field, or an equivalent combination of education and work experience. (Typically, four years of additional related, progressive work experience would be needed for candidates applying for this position who do not possess a Bachelor’s degree. A minimum of two years additional directly related technical experience is required.)
• Minimum of six years of experience in progressively responsible information technology roles.
• Five years of experience in developing, implementing, or architecting information systems.
• Knowledge in understanding various domains such as security architecture, system and network security, authentication and authorization protocols, cryptography, and application security.
• Experience in analyzing threats of cloud and application components.
• Extensive cloud security engineering / design experience on one of the major cloud platforms AWS, GCP, Azure, OCI (Azure or OCI preferred).
• Extensive background in cloud applications, cloud platforms and/or experience providing cloud infrastructure platforms in complex environments.
• Fluent in CICD tooling and automation capabilities.
• Experience with application migration to cloud services and the security considerations required.
• Experience with network protocols, topologies, and encryption.
• Experience with identity management systems and protocols.
• Project management skills: ability to prioritize and handle multiple tasks and projects concurrently.
• Knowledge of information technology terms, equipment, systems, functions and major vendors.
• Excellent oral and written communication skills, including presentation skills.
• Effective interpersonal skills and customer relationship skills.
• Effective analytical, problem-solving, and decision-making skills.
• Advanced knowledge of security principles is desired through achievement of advanced security certification including CISM or CISSP.
• Ability to obtain and maintain a government security clearance of a Secret classification or higher.
  

Preferences

• Solid understanding of both Windows and Linux platforms, Oracle Linux experience preferred.
• IP networking skills, adept at UNIX shell scripting, PERL, BASH, Powershell or Python abilities, and the ability to manipulate and massage data preferred.
• Terraform or other infrastructure-as-code experience preferred.
• Experience in intelligence management, security technologies and corporate security topics preferred.
  

Additional Information

Req Id: 109997
Company Code: PacifiCorp
Primary Location: PORTLAND
Department: PacifiCorp Corporate
Schedule: FT
Personnel Subarea: Exempt
Hiring Range: $129,800.00 - $152,700
This position is eligible for an annual discretionary performance incentive bonus of up to 20.00% of salary.

Benefits: Health care, retirement, paid time off, tuition assistance, paid short-term and long-term disability, paid bereavement leave. For more information, please visit: https://careers.pacificorp.com/content/New-Benefits-Page/?locale=en_US

Employees must be able to perform the essential functions of the position with or without an accommodation.

At PacifiCorp, we celebrate diversity, equity and inclusion. PacifiCorp is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion or religious creed, age, national origin, ancestry, citizenship status (except as required by law), gender (including gender identity and expression), sex (including pregnancy), sexual orientation, genetic information, physical or mental disability, medical condition, veteran or military status, familial or parental status, marital status or any other category protected by applicable local, state or U.S. federal law.

All offers of employment are contingent upon the successful completion of a background check and drug screening.