Enterprise Security Architect III - Attack Surface Management
Phoenix, AZ, US, 85004-2121
Freeport-McMoRan
FCX operates large, long-lived, geographically diverse assets with significant proven and probable reserves of copper, gold and molybdenum.Where You Will Work
Our global headquarters is in Phoenix, Arizona. Several hundred employees support global operations in finance, human resources, information technology, planning and more from the main office, satellite offices or online. As a Hybrid employee, you will collaborate primarily virtually anywhere in the U.S. except California, Connecticut, Illinois, Kansas, Kentucky, Massachusetts, Michigan, New Hampshire, New York, North Carolina, Oklahoma and South Carolina. Additional states may be excluded based on business factors. Occasionally, you may be required to attend in-person meetings at our Collaboration Hub at the Cotton Center in Phoenix and/or one of our site locations. The Collaboration Hub provides an open, flexible workspace for individuals and teams to come together for various business needs. Amenities at the Hub include a working café, phone booths and meeting rooms with technology tools for virtual and in-person collaboration. In person attendance may vary based on the position and department requirements.
Phoenix is the capital of the Grand Canyon State and enjoys mostly bright skies throughout the year. It is the perfect place if you enjoy the outdoors, love sports, concerts and other big city amenities or technology. There are great neighborhoods around Phoenix, with easy access to a major city, nature, the arts and many more amenities.
Description
Design, conduct Proof-of-Concepts (POCs), and collaborate with various MIS teams responsible for the overall security posture of the infrastructure and applications used within the organization. Work with partners to design and execute penetration testing, red/purple team exercises, as well as participate in tabletop exercises for incident response and recovery topics. Analyze technologies and recommend upgrades/changes based on assessments of the organization's current and future needs.
- Coordinate with management and IT architects to design system solutions and create implementation and support models for security posture of various cloud technologies and on-premise solutions.
- Create both short and long-term security roadmaps based on an understanding of the organizational strategic requirements, technology context and business needs.
- Define and review reports to ensure program objectives are successfully delivered. Proactively intervene to correct problems when they are encountered. Use metrics to improve processes.
- Work effectively with other IT teams and outsourcing provider(s) to ensure technology security solutions are effectively managed and performed.
- Provide a thorough analysis of service results and respond to any escalated service delivery issues.
- Assess organization’s current and future technology needs. Set direction and lead improvements of techniques, methodologies and deliverables.
- Perform other duties as requested.
Qualifications
Minimum Qualifications:
- Associates Degree and ten (10) years of experience in security systems technologies and ISACA, SANS, ISC(2), or CEH Certification or related security certification; OR
- Bachelor’s Degree in Information Systems or related field and eight (8) years of experience in security systems technologies; OR
- Bachelor’s Degree in Information Systems or related field and six (6) years of experience in security systems technologies and ISACA, SANS, ISC(2), or CEH Certification or related security certification; OR
- Master’s Degree in Information Systems or related field and six (6) years of experience in security systems technologies; OR
- Master’s Degree in Information Systems or related field and five (5) years of experience insecurity systems technologies and ISACA, SANS, ISC(2), or CEH Certification or related security certification
Preferred Qualifications:
- Security certifications, such as CISSP, CISM, GIAC, etc.
- Experience with Threat and Vulnerability Management (TVM) solutions such as Tenable or Qualys (experience with Ivanti Neurons/Risksense is a plus)
- Experience with Cloud Security Posture Management (CSPM) solutions
- Experience with Attack Surface Management (ASM) solutions
- Experienced working with managed service providers
- Active in security organizations, such as ISC2, ISACA, SANS, etc.
Criteria/Conditions:
- Personal protective equipment is required when performing work in a mine, outdoor, manufacturing or plant environment, including hard hat, hearing protection, safety glasses, safety footwear, and as needed, respirator, rubber steel-toe boots, protective clothing, gloves and any other protective equipment as required.
- Freeport-McMoRan promotes a drug/alcohol-free work environment through the use of mandatory pre-employment drug testing and on-going random drug testing as allowed by applicable state laws
At Freeport, we are committed to providing an employment package that recognizes excellence, rewards value and impact, and encourages safe production. Benefits and compensation are foundational elements of this package, along with career development opportunities, job progression and a culture supported by our core values, among others. Learn more at: FCX Jobs - Working Here
Benefits:
We provide an industry-leading benefits package with some of the lowest cost to employees – offering health, wellness, life insurance, paid time off, retirement savings and more. These benefits are available to you and your dependents starting day one. Our comprehensive benefits program is important to how we support the health and wellness of employees and their families. For further benefits information please click here: Benefits Details
Compensation:
The estimated annual pay range for this role is currently $125,000 - $175,000. This range reflects base salary only and does not include bonus payments, benefits or retirement contributions. Actual base pay is determined by experience, qualifications, skills and other job-related factors. This role is eligible for additional incentive compensation considerations based on company and individual performance. Additionally, this position is currently eligible for annual long-term incentive consideration. Long-term incentives are contingent upon authorized approval under the terms and conditions of the Company's plan and award agreements. More details will be shared during the hiring process. To view an example of a Total Rewards Estimate for this role click here: Total Rewards Estimate
Safety / Work Conditions:
Candidates will be required to participate in a post-offer, pre-employment medical examination for the following positions which may have essential job duties that can impact both their own safety and the safety of others:
- Site-based positions, or positions which require unescorted access to site-based operational areas, which are held by employees who are required to receive MSHA, OSHA, DOT, HAZWOPER and/or Hazard Recognition Training; or
- Positions which are held by employees who operate equipment, machinery or motor vehicles in furtherance of performing the essential functions of their job duties, including operating motor vehicles while on Company business or travel (for this purpose “motor vehicles” includes Company owned or leased motor vehicles and personal motor vehicles used by employees in furtherance of Company business or while on Company travel).
Equal Opportunity Employer
Please be advised that Freeport-McMoRan will never request payment for job-related expenses from applicants. If you receive any suspicious emails, please disregard them, and report the incident to HRSC@fmi.com.
Tags: ASM CEH CISM CISSP Cloud CSPM Finance GIAC Incident response ISACA Pentesting POCs Qualys SANS Vulnerability management
Perks/benefits: Career development Flex hours Flex vacation Health care Salary bonus
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs