Principal Architect, Information Security

The Opportunity:

Avantor’s Principal Cybersecurity Architect is the recognized subject matter expert who has major responsibilities for the design, implementation, support, and documentation of cyber and network security solutions. This individual will be working with a team that is responsible for security operations, data protection, endpoint security, network security, security monitoring, incident response and vulnerability management solutions and technologies in a rapidly changing organization. This role will apply leading practice design, implementation and operation of security service solutions, policies, and emerging technology to meet and respond to the ever-present threat to the organization’s data and infrastructure. The position will ensure that all technologies are architected appropriately, operationally ready and documented for the operational teams to execute on capabilities.

What we're looking for

• Education: Bachelor’s degree in computer science or related field, or equivalent education/experience.
• Experience: 5-10 years of experience architecting cybersecurity solutions.
• Advanced knowledge and experience with solving highly technical problems as well as in building and architecting secure solutions to solve those complex problems required.
• Industry certifications such as CISSP, CCSP or equivalent.
• AWS certifications– especially Cloud Security Engineer or Cloud Security Architect.
• Azure certifications also a plus; We will train if necessary.
• Security architecture experience: demonstrating solutions delivery, principles, and emerging technologies. Designing and implementing security solutions. This includes:
• Continuous monitoring and making improvements to those solutions.
• Working with the business, with the operational information technology teams, and the information security team and vendors.
• Experience with and the ability to work in a maturing environment where standards, processes and procedures are being crafted.
• Consulting and engineering experience in the development and design of security leading practices and implementation of security principles across the organization, to meet business goals aligned with customer and regulatory\organizational requirements.
• Experience advanced security technologies such as SASE, IAM, EDR, SIEM
• Experience with Zero Trust architecture such as Zscaler ZPA or Netskope Private Access or similar technologies.
• Experience in security considerations for cloud computing control, SaaS, PaaS and\or IaaS. Requirements include but aren't limited to: interfaces, system development, security design, APIs, data breaches, authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and DoS attacks.
• Knowledgeable in Enterprise Architecture standards and practices including the ability to translate customer business needs into Network and Security standards and requirements.
• Provides guidance, mentoring and training to the broader IS Security team.
• Knowledge and experience both working in and helping to secure OT (Operational Technology) environments. A working knowledge of industry 4.0 is a plus.
• Experience or knowledge of CMMC and NIST 800-171 compliance standards and frameworks
• Experience in the incident handling procedures and intrusion analysis models
• Production and review of procedures & standards documentation
• Experience in the development of threat hunting programs & strategy

Who you are

• Able to think strategically vs. tactically.
• Have advanced knowledge, experience, and a hunger in seeking, identifying and solving highly complex problems as well as in building and architecting secure solutions to solve them.
• You possess strong and superb communication skills to be able to work with senior leadership.
• Have strong understanding of AWS fundamentals including both securing it and helping to architect cloud-native solutions.
• Able to work independently with limited supervision to solve problems and get the job done right.
• Able to understand and develop both PowerShell and Bash scripts.
• Strong solid understanding of Windows and Linux (RHEL-like) operating systems including working knowledge of command line (cmd / bash).
• Have solid understanding Zero Trust architectures.
• You have working knowledge of networking fundamentals (routing/switching/SPAN ports).
• Able to collaborate and work with a diverse set of business and technology teams from around the globe.
• Have knowledge and experience with CMMC/NIST 800-171.
• You know relevant frameworks, standards, tools and regulations, National Institute of Standards and Technology (NIST) standards (800-171, 800-53), ISO27001/27002, COBIT, COSO, ITAR, DFARS, OWASP top 10 and others.

Disclaimer:

The above statements are intended to describe the general nature and level of work being performed by employees assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of employees assigned to this position. Avantor is proud to be an equal opportunity employer.

Why Avantor?

Dare to go further in your career. Join our global team of 14,000+ associates whose passion for discovery and determination to overcome challenges relentlessly advances life-changing science.
 
The work we do changes people's lives for the better. It brings new patient treatments and therapies to market, giving a cancer survivor the chance to walk his daughter down the aisle. It enables medical devices that help a little boy hear his mom's voice for the first time. Outcomes such as these create unlimited opportunities for you to contribute your talents, learn new skills and grow your career at Avantor.
 
We are committed to helping you on this journey through our diverse, equitable and inclusive culture which includes learning experiences to support your career growth and success. At Avantor, dare to go further and see how the impact of your contributions set science in motion to create a better world. Apply today!

Pay Transparency:

The expected pre-tax pay for this position is

Actual pay may differ depending on relevant factors such as prior experience and geographic location.

EEO Statement:

We are an Equal Employment/Affirmative Action employer and VEVRAA Federal Contractor. We do not discriminate in hiring on the basis of sex, gender identity, sexual orientation, race, color, religious creed, national origin, physical or mental disability, protected Veteran status, or any other characteristic protected by federal, state/province, or local law.

If you need a reasonable accommodation for any part of the employment process, please contact us by email at recruiting@avantorsciences.com and let us know the nature of your request and your contact information. Requests for accommodation will be considered on a case-by-case basis. Please note that only inquiries concerning a request for reasonable accommodation will be responded to from this email address.

For more information about equal employment opportunity protections, please view the Equal Employment Opportunity is THE LAW Poster, EEO is the Law Poster Supplement, and Pay Transparency Non-Discrimination Provision.

3rd Party Non-Solicitation Policy:

By submitting candidates without having been formally assigned on and contracted for a specific job requisition by Avantor, or by failing to comply with the Avantor recruitment process, you forfeit any fee on the submitted candidates, regardless of your usual terms and conditions. Avantor works with a preferred supplier list and will take the initiative to engage with recruitment agencies based on its needs and will not be accepting any form of solicitation.