Security Architect

5 days a week onsite in Houston, TexasLong term contract - Hourly rate based on experience Job Description• Provides technical advisement to project teams to ensure compliance with IT security processes and standards. • Ensure that security of the solutions/systems developed in support of the business are aligned with ConocoPhillips Enterprise Architecture, technical standards, and technology roadmaps.• Demonstrates either a wide breadth of security architectural experience across multiple technical domains (e.g. network security, identity security, endpoint security, cloud security) or is recognized as an expert in a specific domain.• Ensures security solutions will work together as a zero-trust fabric to achieve intended risk-based business outcomes.• Plays a critical role in pre-planning of new and existing security architectures• Interpret business needs and requirements when designing and developing technical security architectures to deliver the desired business capabilities• Leverages security architectural experience and expertise across a wide variety of technology domains including infrastructure, data management, systems integration, and application development, cloud, and endpoint• Collaborates between IT Security architecture colleagues for continuous learning and is curious to learn from peer architect colleagues for extending self-knowledge base• Performs an active role in Security Architecture Reviews as part of the Risk Assessment processRequirements:• IT Security certifications such as TOGAF, CSSLP, SCRUM Master, SAFe Architect, Network Security, PCNSE, Wireless, IAM/ADM, Cloud (Cloud Solutions Architect Expert and Cloud Security Engineer Associate• 7-10 years of security experience across multiple technical disciplines: API Management, Cloud Security Architecture, Identity Management/Multi-factor/Directory Services, Routers/switches, Firewalls/VPN client, VPN tunnels, Endpoint Security Tools, Operating System Best Practices, Cloud Management Gateway, Patching, Mobility, or Device Management (MDM)CISSP or CISM certification• Ability to research new solutions to document best practices to ensure they are implemented and documented as part of the IT Security Reference Architecture• Experience with Visio and/or similar architectural design systems• Advanced proficiency in authentication, authorization, and security policies• Advanced understanding of the practical ways to apply security standard methodologies in new situations• Advanced understanding Cloud best practices on leveraging the capabilities to secure by design• Intermediate knowledge of cloud security products as part of a cloud strategy• Intermediate knowledge of on-prem and cloud Directory Services, SSO, SAML, and MFA• Intermediate knowledge of network switches, routers, firewalls, DMVPN, S2S IPSEC VPN, and HTTPS client VPN• Basic awareness of SASE solutions to provide least privilege/RBAC access• Basic knowledge of OT systems as they pertain to the IE62443 for ICS Security• Documentation skills through both whitepapers and architectural diagrams to present the pros and cons, risk evaluation, and business value for potential solutions• Perform security architecture design reviews to document solutions to be implemented to match best practices and set a standard for deviations and exceptions to be made• Merger and Acquisition experience

Created: 2025-03-03