Cloud Security Architect – Advisor (Remote)

Company Description
At Fannie Mae, futures are made. The inspiring work we do helps make a home a possibility for millions of homeowners and renters. Every day offers compelling opportunities to use tech to tackle housing’s biggest challenges and impact the future of the industry. You’ll be a part of an expert team thriving in an energizing, flexible environment. Here, you will grow your career and help create access to fair, affordable housing finance.
Job Description
As a valued contributor to our team, you will advise team members on the design and processes for implementation of components of technological structures. In this role, you will create solutions with a process-driven view, as well as devise processes for maintaining and/or updating existing structures.

THE IMPACT YOU WILL MAKE
The Cloud Security – Architecture – Advisor role will offer you the flexibility to make each day your own, while working alongside people who care so that you can deliver on the following responsibilities:

• Apply advanced skills, knowledge, and/or experience to lead modeling, analysis, and planning projects.
• Translate functional requirements into technical solutions to meet customer needs by applying advanced skills, knowledge, and experience.
• Maintain existing structures and collaborate with management to define governance processes.
• Perform modeling, analysis, and planning to solve technical business problems and inform the team’s technical direction.

Qualifications
Minimum Required Experience

• 6 years

Certifications

• AWS Solution Architect Associate or Professional is a must
• AWS Security Specialty is a must
• CISSP is desirable
• Any other certifications like CompTIA Security+, CSA, Azure Security, GCP Security are bonus

Desired Experiences

• Bachelor degree or equivalent
• 5+ Years of experience in Cyber Security field as an Information Security Architect or Cloud Security Architect
• 4+ years of experience in AWS as a Cloud Security Architect/Engineer and must be certified in the cloud technologies/infrastructures
• Preferred industry recognized experience in security (e.g., CISSP, CCSK, CISA, CISM, CEH)
• Minimum of 5 years of experience in IT security risk assessments and related frameworks (e.g., NIST 800 series, ISO 27000 series, IT General Controls
• Strong knowledge of the AWS Infrastructure services.
• Strong communication, proactive methods for problem solving, strong documentation and collaboration skills across the enterprise.
• Excellent coordination skills and must be detail oriented

Key Areas of Responsibility

• Partner with Enterprise/Portfolio Architecture team and Business Units development squads to collaboratively develop security architectures/designs leveraging approved patterns that ensure applications migrating from on-premises to Cloud, achieving high standards of security practices and compliance.
• Drive the development and adoption of cloud security standards, best practices, and technologies within Enterprise IT infrastructure
• Liaise on security-related issues with internal business stakeholders, InfoSec, Enterprise Architecture, and application development squads
• Work to develop, enhance and document security architecture, security policies, patterns, procedures, guidelines, and standards required to design cloud-based solutions
• Educate application, portfolio and solution architects on secure solution design and industry best security practices
• Work on assessments of compliance and standards including and not limited to NIST, FedRAMP, FIPS, etc.
• Support threat modeling and update application security architecture as needed.
• Support application development squads with Security implementations and issues

Skills

• Serve as an expert in Fannie Mae’s Information Security capabilities, solutions policies, procedures, and standards.
• Act to apply NIST frameworks on all cloud patterns, capabilities, and application migrations
• Influence technical patterns and capabilities to apply security and cloud policy to shift left in the development processes
• Act as a central point of contact for all conceptual knowledge of regulations for PCI, Sarbanes-Oxley, GLBA, and FISMA
• Responsibilities include setting the compliance strategy for infrastructure and application build, deploy, monitor, and operate applications.
• Candidate should have architected applications at scale on modern cloud native architectures (AWS).
• The candidate needs expertise to architect cloud native infrastructure using containerization and microservices transformation in application APIs and address platform operational security concerns.
• Plan and document design methods for the optimization and integration of various technology platforms, tools, policies, and principles that lead to target state implementation with cloud policy and compliance.

Tools

• Deep Knowledge in containerization of applications, design, and deployment
• Skilled in Amazon Web Services (AWS) offerings, development, and networking platforms
• Experience with Agile Tools and methodologies
• Experience in object-oriented programming preferrable JAVA, Python, etc.,
• Knowledge of storage software platforms such as NetApp, Nimble, and Pure Storage
• Knowledge of ITSM Tools e.g., ServiceNow to manage digital workflows
• Experience using APIs for developing or programming software
• Skilled in CICD Tools and Pipelines
• Knowledge of virtualization software such as Microsoft Hyper-V, VMWare vSphere, or Citrix XenDesktop.