Architect - Cyber Security

Position Overview

The primary responsibility of the Architect Cyber Security is to support the evaluation, maintenance, and improvement of the confidentiality, availability, and integrity of the LVSC IT systems.

The role will serve as a security consultant for internal systems, often supporting design development, comparing vendor products, developing business cases, implementing, deploying and overseeing the transfer into production.

All duties are to be performed in accordance with departmental and Las Vegas Sands Corp.’s policies, practices, and procedures.

All Las Vegas Sands Corp. Team Members are expected to conduct and carry themselves in a professional manner at all times.

Team Members are required to observe the Company’s standards, work requirements and rules of conduct.

Essential Duties & Responsibilities

• Support design and implement cyber security systems including Security Information & Event Monitoring (SIEM), Internet Content Filtering, Cloud security, Anti-malware as well as security controls in corporate applications.
• Support development of security performance metrics.
• Assist project managers in risk assessment, mitigation, and reporting throughout the project lifecycle.
• Support development and consultation on the security architecture of IT solutions.
• Support the mitigation of cyber security risks through system implementations and modifications, ensuring all applications and data comply with cyber security policies and controls.
• Support Cyber Security projects to include; identifying, proposing, scheduling, budgeting, aligning resources, execution, and reporting on projects.
• Provide support for security consulting for IT projects.
• Applies an understanding of the information security, cyber security, and operational characteristics of a variety of computer platforms, networks, software applications, and operating systems.
• Provides technical support, direction, and guidance to other Cyber Security Engineers, Information Technology and the business to align with regulatory and security requirements.
• Integrates comprehensive metrics into the security posture of the organization, identifies areas of weakness and vulnerability and recommends changes to meet security standards.
• Safety is an essential function of this job.
• Consistent and regular attendance is an essential function of this job.
• Performs other related duties as assigned.

Minimum Qualifications

• At least 21 years of age.
• Proof of authorization to work in the United States
• Bachelor’s degree in Computer / Information Science preferred or equivalent work experience.
• Must be able to obtain and maintain a Nevada Gaming Control Board Registration and any other certification or license, as required by law or policy
• 1 or more years of experience in a cyber security architect or engineering role or at least 6 years related field work experience with 3 or more years of experience in a cyber security role
• Demonstrated experience on information security practices relating to PCI, SOX, HIPAA, application security and / or PII data protection
• Demonstrated experience working with technical and non-technical staff
• One of the following professional security management certifications; Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials
• Experience analyzing, and consulting on availability, access control & security monitoring for a wide breadth of platforms
• Experience with security protection systems such as SIEM, Antivirus, GRC, DLP and Encryption enterprise-class suites and UTM and NextGen firewall deployment
• Experience using application security and host security scanning tools such as Backtrack, MetaSploit, Nessus, Qualys, and others
• Experience with Service Oriented Architecture
• Experience securing and managing hosted solutions (SaaS and PaaS)
• Experience securing and managing mobile computing environments
• Knowledge of cryptographic technologies, security protocols, security analysis and risk management
• Basic knowledge of a broad range of IT Security, Controls and Service Delivery standards and frameworks for example, International Standards Organization (ISO) 27001, IT Infrastructure Library (ITIL), Control Objectives for IT (CoBIT), and Capability Maturity Model Integration (CMMI)
• Ability to support the execution of multiple projects and tasks under tight deadlines
• Provide off-hours support on an infrequent, but as needed basis. (Potential shifts may run 24 / 7 due to the need of the business.)
• Strong interpersonal skills with the ability to communicate effectively with guests and other Team Members of different backgrounds and levels of experience.
• Must be able to work varied shifts, including nights, weekends and holidays.

Physical Requirements

Must be able to :

• Lift or carry 20 pounds, unassisted, in the performance of specific tasks, as assigned.
• Physically access assigned workspace areas with or without reasonable accommodation.
• Work remotely as necessary.
• Work indoors and be exposed to various environmental factors such as, but not limited to, CRT, noise, and dust.
• Utilize laptop and standard keyboard to perform essential functions of the job.
29 days ago