Company: Baker Hughes
Skills: IT - Analysis & Management, Security, Architect
Experience: 10 + Years
Education: Masters Degree
Employment Type: Full Time Salaried Employee
Location: Houston, Texas, United States

In order to apply for this position, applicants MUST meet the following criteria. If your resume does not match these criteria, you will not be able to apply for this position.

Role Summary:

The Sr. Staff Cyber Security Architect - Infrastructure Security works on highly complex projects that require in-depth domain knowledge in all dimensions of cloud security. You are responsible for driving the architect, build out, and implementation efforts related to architecture, scalability, availability and performance alignment w/ the product roadmap with a focus on application development & automation. They may interact w/ functional leaders to support these technical initiatives.

Essential Responsibilities:

In this role Sr. Staff Cyber Security Architect - Infrastructure Security, you will:
  • Leading and executing cloud security solutions across the lifecycle - strategy, design, implementation and operations
  • Supervising the work of cloud security team members, supporting delivery teams and staff, and mentoring cloud security team members
  • Developing security strategy plans and roadmaps based on cloud architecting best practices and provide guidance and hands-on experience to project teams in design, development, and maintenance of security solutions for cloud
  • Determining security requirements for cloud-based solutions by evaluating business strategies and requirements; researching cloud infrastructure security standards such as ISO 27000 series, NIST CSF, and CSA
  • Designing and developing cloud security policies, standards and procedures e.g., account management, tenant management, CASB integration, proxy server management, firewall management, SSL/IPsec, security incident and event management (SIEM), data protection (DLP, encryption), user account management (SSO, SAML), and password/key management, vulnerability/threat assessment
  • Coordinating cloud security team members to conduct security analysis of Baker Hughes cloud platforms and environments using Baker Hughes security requirements and cloud security best practices. This can include prospective and existing workloads in IaaS, PaaS and SaaS cloud platforms.
  • Conducting cloud security readiness assessments and analysis of prospective cloud platforms/environments prior to broader deployments or adoption at Baker Hughes.
  • Assessing Baker Hughes cloud service providers' SSAE 16, SOC 1 and/or SOC 2 audit reports (or alternative sources) for security-related deficiencies and required "user controls" and suggest remediation controls
  • Acting as a cloud security subject matter expert and work in conjunction with other project teams on the public / private / hybrid cloud ecosystem to develop security solutions for Baker Hughes
  • Acting as the product owner of Baker Hughes cloud security solutions - including custom built cloud security software solutions

  • Bachelor's Degree in Computer Science, Cyber Security or similar discipline from an accredited college or university
  • Minimum 10 years of technology experience
  • Minimum 5 years of hands-on technical experience designing and implementing Infrastructure security solutions, e.g. end point, network, hardware, firmware, encryption technologies, DNS, SOA, database, web applications, Operational Technology (OT) , iOT and hybrid of cloud platforms
  • Minimum 2 years working experience working in various cloud models across IaaS, PaaS, SaaS, etc. and ethical hacking, firewall and intrusion detention / prevention technology, secure coding practices and threat modeling
  • Minimum 5 years of relevant consulting or industry experience
  • Minimum 2 years in a technical or functional lead role
  • Minimum 2 years working experience with Virtualization including security for at least one or more of the following: Compute, Network, Storage, End-point, Application CISCO and/or Palo Alton Network certification
Eligibility Requirements:
  • CISSP or CISM certified
  • Certified Ethical Hacker (CEH)
  • Must be willing to work out of an office located in Houston, TX

Desired Characteristics:
  • Master's Degree in Computer Science, Cyber Security or similar discipline from an accredited college or university
  • Certifications should include CCSP, CCSK, and other cloud vendor specific certifications
  • Familiar with Palo Alto and/or CISCO Network infrastructure device (routers, switches, firewalls)
  • Proven ability to deliver while under tight timelines
  • Demonstrated ability to proactively analyze and solve complex problem
  • Excellent communication skills including both verbal and written
  • Previous experience delivering presentations, in particular to senior leadership audience
  • Proven ability to persuade and influence outcomes
  • Experience with other cloud service providers such as GCP or Azure across SPI (e.g. SaaS, PaaS, IaaS) models and environments (Public, Private, Hybrid)
  • Experience designing IAM technologies and services
  • Strong working knowledge of IT service management (e.g., ITIL-related disciplines)
  • Direct, hands-on experience or strong working knowledge of managing enterprise security infrastructure and perimeter security appliances - e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology
  • Understanding of industry security standards, guidelines and regulatory / compliance requirements related to information security and cloud computing such as ISO 27001, ISO 27018, NIST 800-53, PCI DSS, SOC2, HIPAA, PCI, SOX, GLBA, etc.

Personal Attributes:
  • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
  • Strong interpersonal skills, with an emphasis on the ability to effectively influence others
  • A team-focused mentality with the proven ability to work effectively with diverse stakeholders
  • An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative, and actionable manner

  • Houston, TX

This is your opportunity to learn more, do more, live the career you have imagined and be part of a truly diverse organization.

Baker Hughes is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. Learn more