Job Description:

Description

Overview:

Technology advancements are helping organizations to deliver un-parallel user experience and value creation. The convergence of physical and digital world is leading to connected ecosystem that creates exponential number of interactions and data/information exchange. While cloud, data analytics and IIoT technologies bring huge opportunity, it also pushes relevance of cyber security to whole new level and demands the integration and orchestration of people, processes, and technologies to meet trusted digital transformation.

Mirion is a leader in radiation safety, measurement, and science. Built on 60 years of experience, Mirion solutions play critical role in nuclear energy, medial and defense sector. Being part of Critical National Infrastructure ecosystem, Mirion is committed to bring best of cyber security to operate as "Trusted Enterprise" and delivery Solutions that are "Secure-by-Design".

Mirion is looking for motivated, experienced, and expert cyber defenders. As part of corporate cyber security team and reporting to Chief Information Security Officer (CISO), the Enterprise Cloud & Network Security Architect shall perform responsibilities and have qualification, experience and expertise as described below:

Position Responsibilities:

• The enterprise cloud & network security architect will lead the design, development, implementation, and operation of the hybrid cloud security strategy (public/private) directly contributing to the global infrastructure and across all type of consumption method IaaS/PaaS/SaaS.


• Serve as the network security (LAN/WAN/Wi-Fi/Cellular) central point of contact for other technology teams within the organization.
  
  
  
  • Oversee the design and build of network & security-specific solutions. Plan systems by evaluating network and security technologies; developing requirements for Local Area Networks (LANs), Wide Area Networks (WANs), Virtual Private Networks (VPNs), Routers, Firewalls, and related security & network devices.
  
  
  
  


• Develop cloud and network security policies, processes, technical controls, and governance model in compliance with industry standards and regulatory guidelines.


• Design, deploy and operate the Security-as-a-Service and work with product engineering, IT infrastructure, and business application development organizations to implement adequate security controls under guidance of corporate security policies and standards.


• Keep track of emerging security threats, technology trends and maintain agile solution framework that can align to growing need of organization while offering resilient cyber security control.


• Work with partner organization to manage cloud and network Security operations. Operate in-scope cyber security controls at highest assurance level.


• Maintain and report on committed SLA level for Security-as-a-Service KPIs.


• Identify the white space to implement most cost-effective means of achieving organizational goals.


• Be champion of cyber security discipline and participate/offer user training, educational sessions to internal / external users.

Qualification Required

• 12+ years of experience as security engineer/architect - must have worked on large enterprise-wide cloud and network security policy, process, and technology implementation.


• Industry recognized certifications are a plus - e.g., CISSP, CCIE, MS AZ-500 or similar


• In-depth knowledge of NIST CSF -1.1, NIST SP 800-53, NIST SP 800-207, NIST SP 800-160, NIST SP 800-144, NIST SP 800-41, NIST SP 800-42, NIST SP 800-48


• In-Depth knowledge of Microsoft 365, Microsoft Azure and VMWare security technology and services:
  
  
  
  • Web Application Firewall / Gateway, Azure AD and AD Domain Services, Azure DDoS Protection, Azure HSM and Key-Vault, Azure Defender, Azure Attestation, Azure Defender IoT, Azure Information Protection
  
  
  • Microsoft Enterprise Mobility, MS Intune, MS Endpoint Configuration Manager, MS Defender for Identity, MS Secure Score
  
  
  • VMware Carbon Black, VMware NSX
  
  
  
  


• Extensive experience in network security controls: Zero Trust Network Access, Cloud Access Security Broker, NGFW, IDS/IPS and Remote-Access technology design and operations.


• Bachelor's degree in Engineering or related field.

Other Skills Requirement:

• Strong understanding of security products and vendors, relevant technologies and trends, and industry standards.


• Demonstrated experience in gathering and transforming business requirements into a comprehensive technology solution definition.


• Strong team player - work with internal and external stakeholder to solve problems and actively incorporate input from various sources.


• Excellent communication skills and collaborative working style. Strong critical thinking and analytical skills and ability to think "out of the box" required.


• Willing to travel


• Bachelor's degree in Engineering or related field

Technical Experience : Experience with private public cloud architectures, pros/cons, and migration considerations - Extensive hands-on experience implementing infra migration , data migration and data processing using Azure services: Networking, Windows/Linux virtual machines, Container, Storage, ELB, AutoScaling, Azure Functions, Serverless Architecture, ARM Templates, Azure SQL DB/DW, Data Factory, Azure Stream Analytics, Azure Analysis Service - Must have experience in Azure IaaS

AZ 300, AZ 301

Additional Information : MCSA Cloud Platform Azure Training Certification MCSE Cloud Platform Infrastructure Certification

Qualifications

BehaviorsInnovative - Consistently introduces new ideas and demonstrates original thinking
Team Player - Works well as a member of a group
EducationBachelors of Engineering (required)
ExperienceNetwork security controls: Zero Trust Network Access, Cloud Access Security Broker, NGFW, IDS/IPS and Remote-Access technology design and operations (required)
In-depth knowledge of NIST CSF -1.1, NIST SP 800-53, NIST SP 800-207, NIST SP 800-160, NIST SP 800-144, NIST SP 800-41, NIST SP 800-42, NIST SP 800-48 (required)
Industry recognized certifications are a plus - e.g., CISSP, CCIE, MS AZ-500 or similar (preferred)
12 years: security engineer/architect - must have worked on large enterprise-wide cloud and network security policy, process, and technology implementation. (required)

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c) Apply Now