Network Security Architect (80 - 100%) (BB-F045D)
Gefunden in: Xpatjobs CH
Beschreibung:About Swiss Re Swiss Re is one of the worlds leading providers of reinsurance, insurance and other forms of insurance-based risk transfer, working to make the world more resilient. We anticipate and manage a wide variety of risks, from natural catastrophes and climate change to cybercrime.At Swiss Re we combine experience with creative thinking and cutting-edge expertise to create new opportunities and solutions for our clients. This is possible thanks to the collaboration of our 15,000 employees across the world. We offer a flexible working environment where curious and adaptable people thrive. Are you interested in joining us? About the Role Design security approach appropriate for large, multinational and geographically dispersed organization that operates in regulated business domain. Develop, validate and update key engineering artifacts such as standards/best practices, design documents and decisions. Design and document solutions to meet requirements and that are easily scalable for the enterprise. Work closely with other architects and engineering teams to understand emerging technologies and how they would benefit Swiss RE and its users Integration and implementation of Public Cloud networking/security solutions to support Swiss Re evolving cloud landscape. Working together on information policies, operations on actual implementation and programs to provide security advisory As subject matter expert work closely with networking associates to understand emerging security technologies and their application in the evolving Swiss RE network security. Translate security designs into implementable policies and ensure that end users can work with those policies Design and develop automation for security related changes/deployments. Act as higher-level escalation for complex security systems related issues Holding workshops and competency transfer to engineering and operation level About the Team The Connectivity Services (CS) team is responsible for the infrastructure services (e.g. WAN, LAN, Security Services, DC LAN, Wi-Fi) for the Swiss Re Global Network, Production Facilities for DCs and ICT Rooms as well as Service Transition & Decommissioning. About You 10+ years of experience in IT Infrastructure with strong focus on cybersecurity Minimum 3 years of experience in architect/technical design authority role Ability to quickly translate business requirements into technology capabilities Knowledge on computer networking concepts (TCP/IP) Good understanding of security perimeter and defense-in-depth models Good understanding Experience in designing security solutions using market leading Next-Generation firewall vendors (Palo Alto, Checkpoint, Cisco). Familiarity with Unified Threat Protection and Anti-Malware/Anti-Virus solutions Experience with fabric-centric segmentation solutions (Cisco ACI and SD-Access) Experience with Web Application Firewall and DDoS protection systems (both on-premise and cloud models) Understanding of major public cloud provider networking concepts and implementations (Azure, AWS and Alibaba experience required including deploying virtual security/network appliances) Good understanding of public cloud security including identity protection and RBAC Experience in solving wireless network security challenges Experience with Bring Your Own Device issues in large organizations Familiarity with at-rest and in-transit data encryption concepts General orientation in data classification and data protection areas Ability to understand security management and security operations in global organization (SOC concept) Demonstrates self-motivation, leadership ability, strong team player who enjoys a fast-paced atmosphere Ability to manage multiple priorities, commitments and projects. Ability to produce HLD and LLD documentation for assigned projects Ability to learn very quickly in a fast-paced environment. Scripting abilities and other IaC tools - Shell, Python, Chef, Puppet, Terraform plus others Understanding of various security frameworks and standards (ISO 27001, PCI-DSS, FIPS, OWASP) Familiarity with offensive security (Red Team, penetration testing) and port-breach forensics is a plus Industry recognized certificate (CISSP, CEH) is a plus Language skills: English is mandatory. German is a plus.
calendar_todayvor 20 Stunden