At Constant Contact, we are seriously awesome people who take ownership and make an impact by operating with the mindset, integrity and courage of a small business owner. Theres something so profoundly rewarding about knowing that your work is empowering people everywhere to pursue their dreams. Here, we all play an integral part in helping business owners, entrepreneurs, non-profits and individuals to succeed by giving them all the help and tools they need to grow online. Were energized by new challenges and new possibilities-and were just getting started!
We have an opening for a Senior IT Security Architecture Engineer who will work across all Information Security Teams and with other business units to identify opportunities for improving security controls, recommend solutions, and lead the design/build-out of new controls.
Reporting to the Director of IT Security Architecture, Design, and Testing, the Senior IT Security Architecture Engineer is a technical position with a minimum of 7 years of experience in a hands-on technical cyber security role. Youll be a member of the Cyber Security Architecture team responsible for the design and establishment of security controls, standards, and processes required to protect the companys computer environment and software products effectively, efficiently, and economically.
*This is a hybrid role working with your team 1 or 2 days a week from our Waltham, MA office
What youll do:
- Review technology and security projects, making recommendations with regard to product selection, configuration, and design
- Remain informed and intimate with current security technology solution trends and approaches
- Remain informed about the current threat landscape and integrate threat information and assess impacts our enterprise's current state
- Understand current enterprise technology architecture and business processes with the goal of addressing security issues and providing an informed opinion to leadership teams
- Provide security guidance and requirements to technology teams with the goal of defining standard processes, documentation, key controls to monitor and metrics to gauge effectiveness
- Prepare, evaluate, and present security solutions and recommendations to senior leaders
- Recommend, coordinate, and implement security technical controls to ensure policies and processes are performing as intended
- Oversee multiple projects to preserve the architectural vision and protect stakeholder interests as well as to meet operational and financial reporting requirements
- Possess the ability to think long-term, quickly develop strategic designs/solutions and think critically across the assigned application portfolio, current technology backdrop while remaining organizationally astute
- Develop security architecture and guiding principles at the macro & micro levels across all cloud initiatives
- Lead, coach, and mentor the Cloud Services team to incorporate security while developing highly scalable, distributed applications involving Cloud Ops, DevOps and Security teams
- Develop technical and security specifications for the targeted applications/workloads in the service catalog
Who you are:
- 7+ years of progressive and comprehensive information security experience
- Security Certifications such as CISSP, CISM, etc.
- Proven experience building security reference architecture for on-premise, cloud, and hybrid scenarios, as well as containers and Kubernetes
- Implementation experience with enterprise security solutions such as Endpoint Protection (EDR/HIPS), Firewall, WAF, IPS, Vuln Management, Anti-DDOS, and SIEM
- Strong knowledge of networking including large scale network segmentation, attack surface management, Zero Trust Network Access, and Software Defined Networking space
- Knowledge of Identity and Access Management, Privileged Access Management, Single-Sign-On, and PKI/Certificate Services a plus
- Demonstrated ability to think strategically about business, product, and technical challenges
- Experience researching and evaluating available technologies and standards to meet requirements
- Experience with working on global teams across time zones, cultures, and languages
#LI-HK1 #LI-Hybrid
Why Youll Love Us:
- We celebrate one anothers differences. We are proud of our culture of diversity and inclusion, and we're always working hard to strengthen and improve this culture. We have programs in place that bring us together on important issues and provide educational opportunities for all employees.
- Join the experts. If you're passionate about supporting businesses and organizations, you wont find a better spot to share your talent. Were dedicated to improving the quality of our product from a customer standpoint and have a true desire to enable the success of businesses, non-profit organizations, and community groups.
- Youll have opportunities to grow your career. We encourage and support our team members to learn different aspects of the business, take on stretch assignments, seek coaching opportunities and professional development opportunities.
- A generous paid time off policy and a competitive benefits package that supports the health and well-being of you and your family
At Constant Contact, were all about work flexibility and are proud to serve our customers as a hybrid workforce. Our hybrid work model combines the convenience of remote work with access to our great office locations to collaborate in-person, participate in live trainings, and socialize with colleagues.
Application Deadline: 30 days. We may fill this job opening prior to the deadline if a candidate is selected by us.
Constant Contact is an equal opportunity employer. We do not discriminate on the basis of race, color, religion, sex, gender, gender identity, national origin, citizenship, age, disability, sexual orientation, genetic information, veteran status or any other status protected under applicable law. If you require accessibility assistance applying for open positions, please contact [email protected].
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractors legal duty to furnish information. 41 CFR 60-1.35(c)
Notice to Recruiters and Staffing Agencies:
Constant Contact has an internal talent acquisition department and designated career site for individuals looking to join our team. Constant Contact will not accept unsolicited resumes from any external recruiters, staffing firms, search agencies or any fee-based referrals. Any unsolicited resumes sent to directly to Constant Contact, in any capacity will be considered property of Constant Contact. Constant Contact will not pay a fee for any placement resulting from the receipt of an unsolicited resume.