More Related Content Similar to Tribune Media Sec Architect (20) Tribune Media Sec Architect1. Senior SecurityArchitect/Engineer
Work withall teamsinTribune Medialeadingthe design,implementation,andoperationof enterprise-
wide securityarchitecturesaswell asresearching,developingandrecommendingarchitectural policies
and practices forcurrent andfuture securityinitiativesfromdefinitionphase throughimplementation
and operation.
RESPONSIBILITIES
• Evaluationof IT systems,appliances,anddevicesbeingproposedforuse withinthe
environmentandtheirabilitytomeetTribune Media’ssecurityrequirements,recommendingmitigating
controlsforidentifiedlimitationsandrisks.
• WorkingcloselywithotherTribune MediaEnterprise Architectstoensure securityrequirements
are addressedinall phasesof projectlifecycles.
• Design,implement,andoperate securitytoolsacrossthe Tribune Medianetwork
• Assistinginthe creationandmaintenance of enterprisesecuritypolicies,controls,andstandards
for technologiesdefinedwithinthe TribuneMediataxonomy.
• Assistinginidentifyingandassessingriskaspartof the overall RiskManagementprocess.
• Participatesinthe discovery,documentationandrefinementof businessrequirementsto
ensure alignmentwithtechnicallyviablesolutiondesigns.
• Subjectmatterexpertiseacrossapplications,data,database,middleware,network
(Intranet/Extranet/Internet),security,andclientplatform(Includingmobile) ITproductsandservices
• Designs,documentsandrecommendsimprovementstosecurityarchitectures,technologies,
and relatedsecuritycontrols.
• Developsandmaintainsthe securitytechnologyplanandroadmaptoprovide adefense in
deptharchitecture.
• Works withTribune Mediateamsonvulnerabilityassessmentandremediation.
• Providesguidance toprojectteamsregardingcomputingsystemornetworkconfigurationand
securitycontrols.
• Works withDevelopsandmaintainscomputingsystemandnetworkbuildstandards.
• Providesguidance andanalysisfortuningsecuritysystems’rules,alertingandreporting.
• Recommends, validates,maintainsandimplementsinformationsecuritystandards,guidelines
and procedurestoensure compliance withthe InformationSecurityprogram.
• Recommendsappropriateandcosteffectivecontrolstoaddressidentifiedsecurityarchitecture-
relatedrisks.
2. • Implementscomplexsecurityarchitecture projecttasksincludingprovidingrequirementsfor
designingandimplementingcomponentsof the InformationSecurityprogram.
• Interfaceswithexternal departmentsandvendorstoprovide expertlevel consultation
concerningInformationSecurityarchitecturesandthe,implementationandintegrationwithexisting
networkenvironments,applicationsandservices.
• Providesassistance tootherTribune MediateamsregardingInformationSecurityarchitecture
issuesandcontrols.
• Evaluatesthirdpartyproductsand servicestoverifythattheymeetsecuritystandardsandwill
integrate seamlesslyandsecurelyintothe TribuneMediacomputingarchitecture.
• Providesaleadershiprole inthe design,implementationandmaintenance of consistent
applicationandinfrastructure architecture securityprograms.
• Works withInternal auditandotherdepartmentstoensure securitycontrolsmeetregulatory
compliance suchasSOX,PCI, or HIPAA
• Ownsecurityadministrationforall SaaSapplications.
• Developedandsupportedall accesssecurityforWorkdayERPand HCM application.
• DevelopedsecuritysettingsforAnaplanbudgetingapplication.
• Maintainfull supportforWorkdayand AnaplanSecurity.
• Developedadd-onsforProcurementandUsertime trackingwithinWorkday.
• Review,test,andimplementall securityconfigurationinWorkdayforbothERP andHCM.
• Reviewall useraccessrequeststoensure noseparationof dutiesconflicts.
• Performbi-annual WorkdayuseraccessreviewandSeparationof Dutyreview.