Security Architect (PCI)
West Monroe isn’t a start-up consulting firm, but we act like one.
From day one, our people have the opportunity to make a definitive personal impact for their clients and their careers. What does this mean? It means we seek out the best of the best, and then we challenge them to make us better.
If you are looking to be a “behind the scenes” technologist, this isn’t the place for you. We celebrate driven professionals who thrive in a collaborative environment. Our consultants work on front lines – partnering with clients to deliver game changing solutions in the most dynamic industries. Sound interesting? Then West Monroe Partners just might be the place for you.
Think you’re up to the challenge?
West Monroe Partners is looking to hire an experienced Security Architect with a current focus on PCI DSS compliance to provide critical security solutions to West Monroe’s Security and Infrastructure Practice. The Security Architect will also work with practice leaders across West Monroe to set the direction of security offerings within the payment card industry. What will you be doing?
The Architect will be responsible for leading technical project teams as the engagement lead to gather requirements, create a design, and implement the solution. You’ll typically be working with a team of consultants working to complete a project that aligns with the client’s business objectives. Typical engagement responsibilities will include:
- Provide strategic security advisory and PCI consulting services for enterprise clients
- Current state review of existing organization, processes, and technologies to deliver key findings and recommendations
- Delivery of cyber asset/system categorization and impact ratings, including site visits to multiple client locations Identify, scope, and deliver solutions to clients across multiple industries.
- Develop implementation strategy and roadmaps, with an initial focus on PCI DSS compliance
- Working closely with network architects to craft network designs that align with PCI DSS best practices
- Perform day-to-day organization, process and technology data collection and analysis, interviews and discovery workshops
- Implements security solutions (infrastructure and/or application) including the design, configuration, development, testing and deployment of security-related technologies such as Security information & Event Monitoring (SIEM), Identity & Access Management, IDS/IPS, Data Loss Prevention, Digital Rights Management, Network Access Control and Payments Security technologies. The Architect also develops methodology and best practices with the national Security & Infrastructure practice team, and actively leads and participates in S&I business development opportunities.
- You’ll be asked to mentor and grow your teams of junior consultants with the end goal of continued development of our team. Identify strengths and opportunities for improvement to develop better behavior to create strong consultants
- Manage client relationships and meet with clients to determine business and functional requirements
- Translate business and technical requirements into concrete project proposals including detailed work plans and cost estimates
- Contribute to the business development process at an existing client,
- Promote thought leadership in emerging technologies; from partnerships to go-to-market offerings, to strategy, to design and implementation.
- Be in the market publishing and speaking about the evolving payment card industry standards (eg. PCI DSS)
- Actively build a professional network and affiliate network in the local community
Desired Skills and Experience
We need someone with real world experience in the following:
- Candidates must have 3+ years of experience performing Security Assessments work (vulnerability management, penetration tests, network security and social engineering)
- Background in auditing IT Security controls
- Ability to convey complex technical security concepts to technical and non-technical audiences including executives required
- Proactive desire to continue to broaden and deepen business and consulting skills
- Demonstrate knowledge and experience with the architecture, engineering and deployment of cyber security solutions
- Experience in leading and delivering end-to-end solutions, which could include strategy, design, development, testing and training, and implementation
- Advanced understanding of application, database, and network security principles for risk identification, mitigation, and analysis
- Experience with cyber security architectural roadmaps, sub-domain strategies, product roadmaps and standards
- Payment Card Industry Professional (PCIP) and/or Certified Information Systems Security Professional (CISSP) certification or equivalent highly desired
What else do you need to bring to the table?
- Excellent organizational, verbal, presentation/facilitation, and written communication skills
- Demonstrated experience with the PCI DSS
- Bachelor’s degree in Information Technology, Computer Science, Business or equivalent industry experience
- Willingness to travel for out of town client engagements, up to 70%.
So, if you’re looking for an opportunity to flex your technical muscles in a high-energy, team-oriented environment where you own your career, we’d love to hear from you.
Think you’ve got what it takes? Join our team and make us better.