Security Architect - Technology

Job Number
AD0000100675
Posting Date
October 7, 2018

About the Position

Position Summary

UAE Nationals are encouraged to apply 

New York University Abu Dhabi (NYUAD) seeks to appoint a Security Architect reporting into the Associate Director, Technology & Security Architecture.

The Technology and Security architecture team defines New York University Abu Dhabi (NYUAD) technology architecture and ensures that NYUAD technology and security strategy are closely aligned to the needs of the university.

The Security Architect plays an integral role in defining and assessing the University’s security strategy, architecture and practices.  The security architect will be required to effectively translate business objectives and risk management strategies into specific security policies enabled by processes, technologies and services.

The architect will devise new solutions to the University’s computer, data and network systems in response to new requirements, changes in regulation and new risks.

Key Responsibilities

Maintain and extend an agile Enterprise Security Architecture for NYUAD

  • Develop and maintain a security architecture that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology and threat drivers
  • Track developments and changes in the digital business and threat environments to ensure that they're adequately addressed in security strategy plans and architecture artifacts
  • Validate IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable

Provide technical expertise to Project Management office for security projects

  • Participate in application and infrastructure projects to provide security-planning advice
  • Draft technical requirement specifications for projects kicked off by security architecture
  • Ensure adequate integration with existing security technologies and determining overlap
  • Draft acceptance test plans & reviewing test results

Ensure smooth delivery of Managed Security Service Provider (MSSP) services and address gaps in contract with the MSSP

  • Conduct or facilitate threat modeling of services and applications that tie to the risk and data associated with the service or application
  • Ensure that the NYUAD managed security service provider maintains a complete, accurate and valid inventory of all systems, infrastructure and applications that should be logged by the security information and event management (SIEM) or log management tool
  • Provide escalation support as required

Education Requirements

Essential
  • Bachelor’s degree in computer science, information systems, cyber-security or equivalent
Desirable
  • CISSP or other equivalent certification
  •  SABSA foundation, TOGAF or other equivalent certification

Experience Requirements

Essential
  • Minimum of eight years experience in the security industry
  • Experience with creating security architecture based on established frameworks and creation of architecture artifacts and patterns
  • Experience working on security projects and writing requirements into RFPs
  • Experience in drafting and articulating security business requirements into technical documents, statement of works and assessment criteria
  • Direct, hands-on experience or strong working knowledge of managing security infrastructure — e.g., firewalls, Next Generation Firewalls, web application firewalls (WAFs), endpoint protection, Splunk and log management technology
  • Direct, hands on experience with Splunk content development
  • Direct hand on experience with NAC (Network access control ) preferably Cisco ISE
  • Direct, hands-on experience or a strong working knowledge of vulnerability management tools
  • The security architect is expected to have experience with the following:Health Insurance Portability and Accountability Act (HIPAA)/Health Information Technology for Economic and Clinical Health (HITECH); General Data Protection Regulation (GDPR); International Organization for Standardization (ISO) 27001/2; National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF); The Family Educational Rights and Privacy Act (FERPA)
  • The ability to articulate technical and business requirements as well as translating business requirements into technical statements of work
  • To be able to contribute to all project documentation throughout the purchasing and RFP processes with statements of work and technical scopes that are clearly articulated in a concise manner that can be understood by local and international teams
  • Ability to work with international teams as well as locally. These team would be located in but not limited to The Philippines, India, Shanghai and New York
  • Good project management, planning, and analytical skills
Desirable
  • Full-stack knowledge of IT infrastructure:Applications; Databases; Operating systems — Windows, Unix and Linux; Hypervisors; IP networks — WAN and LAN; Storage networks — Fibre Channel, iSCSI and NAS; Backup networks and media; DNS, DHCP , VPN,  DMVPN , VLANS, Encryption
  • Experience in academic institutions with similar architecture/services

About NYUAD

NYU Abu Dhabi is a degree-granting research university with a fully integrated liberal arts and science undergraduate program in the Arts, Sciences, Social Sciences, Humanities, and Engineering. NYU Abu Dhabi, NYU New York, and NYU Shanghai, form the backbone of NYU’s global network university, an interconnected network of portal campuses and academic centers across six continents that enable seamless international mobility of students and faculty in their pursuit of academic and scholarly activity. This global university represents a transformative shift in higher education, one in which the intellectual and creative endeavors of academia are shaped and examined through an international and multicultural perspective. As a major intellectual hub at the crossroads of the Arab world, NYUAD serves as a center for scholarly thought, advanced research, knowledge creation, and sharing, through its academic, research, and creative activities.