Sr. Principal Cloud Security Architect at IHS Markit Digital

Sorry, this job was removed at 2:31 p.m. (MST) on Tuesday, October 27, 2020
Find out who's hiring in Colorado.
See all Developer + Engineer jobs in Colorado

In this senior role you will be responsible for developing security standards, assessing risk, and reviewing product architectures in VMware on AWS Cloud (VMC) and other cloud or hybrid environments.  You will partner with other members of global Information Security and internal stakeholders to perform security assessments, threat modeling and inform the design of performant, resilient and compliant VMC, cloud-native, and hybrid architectures. 

You will engage with product management, development, architecture, and information technology partners to ensure security is designed into all initiatives from the outset. 

 

  • Developing and updating security standards for hosted environments including VMC, AWS and other cloud environments 

  • Proactively engaging with product teams to assess migration plans and designs to ensure security requirements are accounted for  

  • Partner with the Office of the CTO (OCTO) enterprise architects to streamline and validate their architectural assessment with expertise in security architecture, regulatory compliance, resiliency and disaster recovery 

  • Proactively identify and document technology risks to the enterprise across the cloud (VMC primary; AWS, Azure or GCP secondary) environments and make recommendations to the information security leadership and engineering teams for mitigating and/or compensating controls 

  • Design and develop security solutions that augment and expand current tooling 

 

 

Summary: 

 

Reporting to the head of Information Security Architecture and Engineering, you will build and execute on a backlog of strategic and tactical work items related to the securing of our product platforms.  You will primarily be working with VMC but may have exposure to AWS native, Azure and GCP.  You will work directly with product teams, enterprise architects, IT, and others to assess architectural designs, technical implementations, standards documentations and other work products as they relate to security, compliance and resiliency.  You will manage security standards documentation, drive automation and reporting, and assessment of control implementation.  You will make recommendations to harden IHS Markit’s security posture and proactively identify risks and potential mitigating or compensating controls. 

 

What will you be doing in addition to the above: 

 

  • Partnering with security engineering teams to design internal security systems as they relate to automation, GRC, threat intelligence and CI/CD tooling 

  • Leveraging your extensive experience to define and drive adoption of security standards, processes, tools, and automation to protect and support the needs of our products and services 

  • Contributing to broader strategic discussions concerning standards, policies, technology, and processes, bringing your ability to bear in improving the overall security posture of the organization 

  • Driving KPI/KRI metrics and reporting framework to measure the efficiency and effectiveness of the controls under management 

  • Partnering with key stakeholders to ensure that security design principles are implemented and operationalized in support of policies and standards 

  • Keeping abreast of latest technologies and innovations in security and monitor industry trends and threats 

 

What are we looking for:  

 

  • Minimum of five years’ experience working with VMware, vSphere, NSX, VMC related technologies in a large scale, highly automated, enterprise setting from an architectural perspective 

  • Minimum of five years’ experience in Information Security to include increasing leadership experience 

  • Minimum of three years’ working with AWS in a deeply technical capacity 

  • Strong architectural, technical and business analysis knowledge, this resource should be able to seamlessly and proactively engage with business partners to perform assessments and inform key security design considerations with minimal supervision 

  • A natural ability to simultaneously use your technical experience, strategic mindset, and people skills    

  • Comfortable working with teams and automated CI/CD pipelines and delivery of resilient and performant architectures in a SecDevOps model 

  • Knowledge of cloud networking architecture, identity, cloud operations, security, automation, and orchestration  

  • Strong understanding of technical security controls, including end-user, office, and data center environments, with a verifiable understanding of threats, vulnerabilities, and mitigation techniques in cloud, on-premise, and hybrid environments 

  • Excellent organizational, research, and verbal/written communication skills, with a proven ability to effectively engage partners, clients, and individual technical and business staff  

  • Strategic thinker, keeping big picture in mind while ensuring execution excellence 

  • Ability to prove security experience via certifications  

  • Self-motivated and willing to take on challenges while adapting to an ever-changing global threat landscape and internal/external partner operational environment 

  • Familiarity in a variety of industry and regulatory frameworks for cybersecurity, IT and privacy such as ISO 27001, ISO 27017, PCI-DSS, NIST CSF, NIST SP 800-53/ITSG-33, CCPA, GDPR, ITILv3, SOC 2, and SOC 3 

Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Product
    • .NETLanguages
    • C#Languages
    • C++Languages
    • JavascriptLanguages
    • jQueryLibraries
    • ReactLibraries
    • AngularJSFrameworks
    • ASP.NETFrameworks
    • Node.jsFrameworks
    • CassandraDatabases
    • Microsoft SQL ServerDatabases
    • MySQLDatabases
    • Google AnalyticsAnalytics
    • IllustratorDesign
    • InVisionDesign
    • PhotoshopDesign
    • SketchDesign
    • ConfluenceManagement
    • JIRAManagement
    • Microsoft ProjectManagement

Location

We may consider Upslope Brewing and OZO Coffee our external conference rooms. If food trucks are your jam we have plenty right outside our doors!

An Insider's view of IHS Markit Digital

What’s the vibe like in the office?

Uniqueness and creativity can be seen in all areas here! We have a digital community bulletin board where you can buy, sell, or post just about anything (seriously, anything!), a company sponsored picnic that includes spirited cornhole competitions, and regular group outings like running or cycling, before, during, or after work.

Marj

Executive Director, Sales

How do you collaborate with other teams in the company?

My teammates and I come from a diverse set of backgrounds and combine our unique perspectives to provide innovative solutions to problems. As a result, our products push new boundaries and delight our clients.

Jason

Product Management Director

What are some things you learned at the company?

I’ve learned to appreciate and be intentional. My teammates are always ready to help each other find a better workflow, learn new tools, and support each other emotionally. This culture of support and collaboration inspires me to contribute by creating amazing work for our clients and being creative in connecting with colleagues intentionally.

Juwon

UI Designer

How would you describe the company’s work-life balance?

Our culture promotes hard work while also living a fulfilling life outside of the office. We all love spending time working together on challenging projects, and when the time comes to get away, the support is felt throughout the company. Whether it's an extended vacation or volunteer opportunity to give back to our community!

Corwin

Associate Creative Director, UI Design

What are IHS Markit Digital Perks + Benefits

Culture
Volunteer in local community
We each get 3 days a year to volunteer and will help match you with existing opportinities.
Partners with Nonprofits
Friends outside of work
Eat lunch together
Intracompany committees
We have ample opportunities to join committees! We've got guilds, a Pride committee, a crafting club, a book club, a green team, a parenting community and several more.
Daily stand up
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Pair programming
Open office floor plan
Diversity
Documented equal pay policy
Dedicated Diversity/Inclusion Staff
Unconscious bias training
Diversity manifesto
Someone's primary function is managing the company’s diversity and inclusion initiatives
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Wellness Programs
Team workouts
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Company Equity
Restricted share unites (RSU's) may be grated recognizing performance.
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Life happens and we trust our colleagues to get the work they committed to done.
Remote Work Program
COVID-19 has provided us the opportunity to quickly acclimate to working remotely and we are establishing new guidelines as we continue to learn.
Family Medical Leave
Vacation & Time Off Benefits
Generous PTO
Paid Volunteer Time
Paid Holidays
Paid Sick Days
Perks & Discounts
Casual Dress
Commuter Benefits
Company Outings
Stocked Kitchen
Parking
Recreational Clubs
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Diversity Program
Lunch and learns
Cross functional training encouraged
Promote from within
Mentorship program
Time allotted for learning
We all want the opportunity to learn and grow. You and your manager can talk about what makes sense for you and your team.
Online course subscriptions available
Customized development tracks

Additional Perks + Benefits

To name a few...pet insurance, ECO pass, loaner bikes and secure bike storage, showers + locker room onsite, food trucks every day and regular visits from Sweet Cow Ice Cream.

More Jobs at IHS Markit Digital20 open jobs
All Jobs
Data + Analytics
Design + UX
Dev + Engineer
Marketing
Product
Sales
Data + Analytics
new
Denver
Developer
new
Denver
Data + Analytics
new
Denver
Developer
new
Denver
Marketing
new
Remote
Design + UX
new
Boulder
Developer
new
Denver
Developer
new
Denver
Developer
new
Denver
Developer
new
Denver
Developer
new
Boulder
Developer
new
Denver
Product
new
Boulder
Developer
new
Boulder
Developer
new
Boulder
Design + UX
new
Boulder
Design + UX
new
Denver