3 Easy Steps

  • 1Search for courses by Study Area, Level and Location
  • 2We deliver you all the matched results
  • 3Choose one or more course providers to contact you
Industry

Distance from location (kms)

Exact 5 10 25 50 100

Posted since

All 2 Days 1 Week 2 Weeks 1 Month

Sort results by

Relevance Date

29

April

Enterprise Security Architect

ResMed Inc. - Sydney, NSW

Any Industry
Source: uWorkin

JOB DESCRIPTION

The Enterprise Security Architect’s primary role is to help assure the integrity and security of all ResMed information and computing infrastructure. It plays an integral role in defining and assessing the organizations security strategy, architecture and practices.

In this role, duties will include evaluating and overseeing security risks, developing controls and framework, performing gap analysis and prioritizing security projects using a risk-based approach. The enterprise security architect is responsible to work closely with the IT Security team, IT leadership and staff, business divisions, executive team members and key stakeholders to ensure alignment of business goals and strategy with security initiatives. The role requires strong communication, influence, critical thinking, and leadership skills. There are also global responsibilities, including project support, policy and standards creation and management, risk assessment and management, security operations, and other support. The position will require international travel.

Let’s talk about Responsibilities:

A key role of the Enterprise Security Architect is to assist in the improvement of ResMed’s IT security posture, protecting confidentiality, and assuring the integrity and security of all ResMed’s systems and information while ensuring alignment with business goals, vision, and strategy.
Represent IT Security group in projects and other initiatives to determine security and data risks, identify compensating controls, and to fill the appropriate security role.
Translate complex security-related matters into business terms that are readily understood by stakeholders and team members.
Evaluate the solution options, financial costs of existing and recommended technologies, provide cost-benefit analysis, calculate TCO and ROI, and present it to business stakeholders.
Determine security requirements by evaluating business goals, requirements, constraints and strategies; conducting risk assessments; studying architecture/platform; identifying integration options and issues; preparing cost estimates.
Interpret business, technology and threat drivers, and develop practical security roadmaps to deal with these drivers.
IT Security Risk identification, management and resolution, and recommendation about risk avoidance strategies, risk mitigation actions and controls.
Define and Draft Risk Management Procedure, Framework and Strategy.
Analyse, assess and draft security project recommendations and participate in preparing business, technical and functional design documents.
Participate in application and infrastructure projects to provide security-planning advice.
Lead and Participate in technical evaluations and proof of concepts to ensure solution viability and alignment with ResMed requirements.
Evaluate and oversee information security risks, developing security measures and best practice resolutions to safeguard information against accidental or unauthorized modification, destruction, or disclosure across all company business units, or inappropriate access to ResMed systems and data through the creation and oversight of cloud security standards and practices.

Let’s talk about Qualifications and Experience:

Extensive experience supporting Global information security in a complex, decentralized IT organization, which focuses on protection of intellectual property and sensitive information.
A degree in a technology or auditing discipline, or other equivalent combination of education and experience that provides the required knowledge and skills.
Minimum 5 years experience supporting information technology and security.
Proven experience building security reference architecture for all-in cloud deployments and hybrid scenarios.
Experience with different cloud platforms like IaaS, PaaS and SaaS.
Extensive experience with Amazon Web Services, Microsoft Azure platforms and preferably Google Cloud Platform.
Automation experience (preferably Python).
A positive "can do" attitude.
Team player that takes the initiative to make an impact.
Effective and strong communication and writing skills.

Desirable:

Experience in using architecture methodologies such as SABSA, Zachman and/or TOGAF.
Security Certifications like CCSP, CISSP, CISM or equivalent.
Risk assessment and management experience.
Direct, hands-on experience or strong working knowledge of managing security infrastructure — e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology.
Full-stack knowledge of IT infrastructure including applications, databases, operating systems, hypervisors, network devices, storage, backups, software, etc.
Strong knowledge of network and Web application exploitation, ethical hacking, penetration testing, computer forensics, and tool development
Strong working knowledge of IT service management including change, configuration, asset, incident and problem management.
Experience within a manufacturing firm in the healthcare industry.
Working knowledge of ISO27001, ISO27002, ISO9001, Sarbanes Oxley, HIPPA, FDA Quality System Regulation, 21 CFR Part 11, 21 CFR Part 820.