Full Stack Security Architect (hybrid or remote)

Belfast, Northern Ireland, gb
Company: Allstate
Category: Production Occupations
Published on 2021-07-28 06:09:19

Your role in the team

As expert Full Stack Security Architect you will be part of a team of high performing Security Architects and be responsible for integrating security into Allstate’s Transformative Growth Plan. This role will work closely with the Allstate Information Security, cloud platform teams, enterprise architects, business partners and vendors to ensure the delivery of secure solutions for the enterprise.

  • Collaborate with and provide technical and professional leadership and coaching to Solution Architects, Delivery Managers, and Lead Engineers 
  • Help drive and communicate Security Architecture technology strategy to leaders and knowledge workers via architecture patterns, roadmaps, conceptual diagrams and solution documents 
  • Provide detailed security technical subject matter expertise on one or more technologies contributing to complex design decisions and detailed problem analysis.
  • Provide technical leadership over large or complex security engineering initiatives where multiple technological disciplines are involved.
  • Influence Senior leadership from business and technology disciplines, presenting and delivering highly complex solutions as needed.
  • Apply the security reference architecture toward the design, deployment and support of highly complex systems that deliver business value
  • Define end-to-end Security Architecture to enable both Business and Technology teams to build collaborative solutions that uses Application Design, Integration Services, Data security, Hybrid or Cloud Native Architecture on-premise and Private/Public Cloud services 
  • Work with strategic vendors and partners to review and influence product roadmaps, strategies, and plans to ensure alignment with Allstate needs, both current and future.
  • Help identify opportunities to enhance process and technology solutions. Help define the case for change by highlighting the potential business/customer benefits.
  • Collaborate with clients and partners to define technology strategies and approaches. Thoroughly understand DevOps ideologies while driving and communicating change supporting DevOps/SecOps methodology within the organization
  • Support vendor selection and analysis process by evaluating vendor architecture's fit within the Allstate ecosystem
  • So, what are the essential criteria to apply?

  • All candidates must evidence an existing right to work in the UK
  • Bachelor's Degree or equivalent industry experience; May also have advanced degree
  • 4+ years technical experience in architecting or engineering security solutions for an enterprise
  • Experience in security tooling and automation such as Terraform, Cloud Formation, Divvy Cloud, Jenkins, CyberArk, Hashicorp Vault etc.
  • Ability to learn new technologies and help integrate them successfully into the workflow.
  • Deep understanding of Cloud technologies and security fundamentals to support regulatory frameworks, audit requirements and assessments
  • Experience influencing technical teams
  • Organized, responsive and highly thorough problem solver; willingness to work in a distributed team and be a mentor to junior architects and engineers
  • Experience of strategy development and execution
  • Possess clear understanding of security protocols and standards and have experience with software and security architectures
  • We also have some desirable criteria

  • Professional architecture or security certification such as Certified Information Systems Security Professional (CISSP), AWS Certified Solution Architect Associate/Professional or other similar credentials
  • Experience with Source Code Management and CI/CD; experience with common scripting languages like Bash, Python, and/or Ruby
  • Solid experience with cloud security strategy, cloud provider ecosystems (AWS/Azure/GCP) and migrating Enterprise from traditional data center Infrastructure, Application and Data designs to hybrid or fully-cloud enabled practices
  • Experience with containers such as Docker and container orchestration, Kubernetes preferred
  • Experience with container image security and best security practices for Linux/UNIX Windows servers
  • Knowledge of cloud networking architecture, cloud operations, cloud-based identity access and management, security, automation and orchestration
  • Jobs you might also be interested in