General Electric Sr Staff Cyber Security Architect in Houston, Texas

Role Summary:

The Sr Staff Cyber Security Architect works on highly complex projects that require in-depth domain knowledge in all dimensions of cloud security. You are responsible for driving the architect, build out, and implementation efforts related to architecture, scalability, availability and performance alignment w/ the product roadmap with a focus on application development & automation. They may interact w/ functional leaders to support these technical initiatives.

Essential Responsibilities:

In the role of Sr Staff Cyber Security Architect, you will:

  • Lead and execute cloud security solutions across the lifecycle – strategy, design, implementation and operations

  • Supervise the work of cloud security team members, supporting delivery teams and staff, and mentoring cloud security team members

  • Develop security strategy plans and roadmaps based on cloud architecting best practices and provide guidance and hands-on experience to project teams in design, development, and maintenance of security solutions for cloud

  • Determine security requirements for cloud-based solutions by evaluating business strategies and requirements; researching cloud infrastructure security standards such as ISO 27000 series, NIST CSF, and CSA

  • Design and develop cloud security policies, standards and procedures e.g., account management, tenant management, CASB integration, proxy server management, firewall management, SSL / IPsec, security incident and event management (SIEM), data protection (DLP, encryption), user account management (SSO, SAML), and password/key management, vulnerability / threat assessment

  • Coordinate cloud security team members to conduct security analysis of BHGE cloud platforms and environments using BHGE security requirements and cloud security best practices. This can include prospective and existing workloads in IaaS, PaaS and SaaS cloud platforms

  • Conduct cloud security readiness assessments and analysis of prospective cloud platforms/environments prior to broader deployments or adoption at BHGE

  • Assess BHGE cloud service providers' SSAE 16, SOC 1 and/or SOC 2 audit reports (or alternative sources) for security-related deficiencies and required "user controls" and suggest remediation controls

  • Act as a cloud security subject matter expert and work in conjunction with other project teams on the public / private / hybrid cloud ecosystem to develop security solutions for BHGE

  • Act as the product owner of BHGE cloud security solutions – including custom built cloud security software solutions Qualifications/Requirements:

  • Bachelor's Degree in Computer Engineering or in a STEM field (Science, Technology, Engineering, Math) from an accredited college or university

  • Minimum 10 years overall technology experience

  • Minimum 5 years of relevant consulting and/or industry experience

  • Minimum 3 years of hands-on technical experience designing and implementing security solutions for AWS across IaaS and PaaS models and environments (Public, Private, Hybrid)

  • Minimum 2 years working experience designing cloud security architectures and strategies for enterprises

  • Minimum 2 years in a technical and/or functional lead role

  • Minimum 2 years working experience with Virtualization including security for at least one or more of the following: Compute, Network, Storage, End-point, Application

  • Minimum 2 years working with Cloud security industry standards such as Cloud Security Alliance (CSA), ISO / IEC 27017 and NIST 500 291

  • Minimum 2 years working experience with Cloud security technologies / vendors (e.g., IAM, SIEM, IDS) and/or providers (e.g., Okta, CipherCloud, AlertLogic), a big plus

  • Minimum 1 years working with Cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI / CD) in single and multi-tenant environments

  • Minimum 1 years working with CASB technologies or planning for large-scale deployments of these technologies Desired Characteristics:

  • Certifications should include CCSP, CISSP, CCSK, and other cloud vendor specific certifications

  • Bachelor's Degree in Computer Science, Cyber Security or similar discipline from an accredited college or university

  • Master's Degree in Computer Science, Cyber Security or similar discipline from an accredited college or university

  • Experience with other cloud service providers such as GCP or Azure across SPI (e.g. SaaS, PaaS, IaaS) models and environments (Public, Private, Hybrid)

  • Experience designing IAM technologies and services

  • Strong working knowledge of IT service management (e.g., ITIL-related disciplines)

  • Direct, hands-on experience or strong working knowledge of managing enterprise security infrastructure and perimeter security appliances — e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology

  • Understanding of industry security standards, guidelines and regulatory / compliance requirements related to information security and cloud computing such as ISO 27001, ISO 27018, NIST 800-53, PCI DSS, SOC2, HIPAA, PCI, SOX, GLBA, etc.

  • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one

  • Strong interpersonal skills, with an emphasis on the ability to effectively influence others

  • A team-focused mentality with the proven ability to work effectively with diverse stakeholders

  • An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative, and actionable manner

  • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one

  • Strong interpersonal skills, with an emphasis on the ability to effectively influence others

  • A team-focused mentality with the proven ability to work effectively with diverse stakeholders

  • An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative, and actionable manner About Us: Baker Hughes, a GE company (NYSE:BHGE) is the world’s first and only fullstream provider of integrated oilfield products, services and digital solutions. Drawing on a storied heritage of invention, BHGE harnesses the passion and experience of its people to enhance productivity across the oil and gas value chain. BHGE helps its customers acquire, transport and refine hydrocarbons more efficiently, productively and safely, with a smaller environmental footprint and at lower cost per barrel. Backed by the digital industrial strength of GE, the company deploys minds, machines and the cloud to break down silos and reduce waste and risk, applying breakthroughs from other industries to advance its own. With operations in over 120 countries, the company’s global scale, local know-how and commitment to service infuse over a century of experience with the spirit of a startup – inventing smarter ways to bring energy to the world.Follow Baker Hughes, a GE company on Twitter @BHGECo, or visit us at BHGE.com. GE offers a great work environment, professional development, challenging careers, and competitive compensation. GE is an Equal Opportunity Employer at http://www.ge.com/sites/default/files/15-000845%20EEO%20combined.pdf . Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. Locations: United States; Texas; HoustonGE will only employ those who are legally authorized to work in the United States for this opening.