The SSD-Design Resource will be key members of the Secure Solutions Design Unit leading the design and implementation of enterprise security solutions, repeatable cloud security patterns and models. These resources bring specialized skills, knowledge and industry best practices in the areas of cloud and on-premise security domains / services, application architecture, networking and security operations.

Develops, recommends, implements and manages the technical architecture (hardware, software, database and communications) which will be used for all or specific applications in a large, distributed cross-platform environment.

Responsibilities also include the identification of relevant information and the determination of the environment, which will be used for development.

General Skills:

Leadership experience in the development and implementation of technical security architectures at the specified experience level 

Extensive experience with at least two cloud service providers (i.e. AWS, Azure, GCP) , enterprise security services, Identity and database technologies, and network access protocols 

Experience in structured methodologies for the design, development and implementation of cloud applications 

Extensive experience in systems analysis and design in large secure solution environments 

Knowledge and experience designing processes around ITIL and is able to guide others using this methodology 

Experience translating business requirements into solution needs 

Experience preparing conceptual, logical and/or physical processes and data models 

Experience developing, recommending, implementing and managing technical security architecture 

Awareness of emerging technologies, trends and directions 

Excellent analytical, problem-solving and decision-making skills; verbal and written communication skills; interpersonal and negotiation skills 

A team player with a track record for meeting deadlines 

Knowledge and understanding of Information Management security principles, concepts, policies and practices

Required Skills - 45%

Advanced knowledge and experience with core security technology domains

Identity Access Management 

· Single Sign On

· Multi factor Authentication

· PKI

Infrastructure

· Infrastructure as a Service (IaaS)

· Platform as a Service (PaaS)

· Software as a Service (SaaS)

Data 

· Digital Encryption Key Management Services

· Transparent Data Encryption

· Tokenization

· Database Activity Monitoring

Network Access Control (NAC)

· Firewall

· Cloud Security Groups

· Policy Management 

· Secure Access Service Edge Architecture 

Security Operation Tools 

· Endpoint Protection & Detection Response (Palo Alto Cortex XDR)

· SIEM (Azure Sentinel & SPLUNK Cloud)

· Security Orchestration and Automated Response S.O.A.R

Agile Project Delivery - 15%

Experience working on agile project delivery teams

Working Experience with

Backlog

User Stories

Scrum

Sprints   

Architecture and Design Experience - 35%

Experience developing solution design and architecture documents

TOGAF Architectural Framework

Solution Design Framework and Documentation

requirements gathering

conceptual design

detailed design

Engineering implementation support   

Previous Public Sector Experience - 5%

Previous Public Sector work experience is considered a positive