Product Security Architect - Cybersecurity

Trimble Inc.•Westminster, CO

About The Position

We're searching for a strategic Cybersecurity Architect to lead the charge in defining and evolving our organization's security posture. In this critical position, you'll be responsible for the end-to-end design, implementation, and ongoing maintenance of our comprehensive security architecture. This role calls for an individual with an intricate understanding of the evolving threat landscape, established security best practices, and all relevant regulatory mandates.

Requirements

Bachelor's degree in Computer Science, Information Security, or a related field.
Minimum of 7 years of experience in cybersecurity architecture or a related role.
Strong understanding of security frameworks and standards such as NIST, SOC, & ISO 27001.
Experience with network security, cloud security, and application security.
Proficiency in security tools and technologies, such as firewalls, intrusion detection systems, and SIEM.
Excellent problem-solving and analytical skills.
Strong communication and interpersonal skills.
Relevant security certifications such as CISSP, AWS Certified Solutions Architect - Associate, Azure Solutions Architect Exert, and/or CEH are highly prioritized.

Nice To Haves

Deep expertise with cloud platforms such as AWS and Azure and their managed services.
Kubernetes, container security, and Infrastructure & Policy as code
Knowledge of scripting languages such as Python or PowerShell and automation languages (i.e. Terraform)
Familiarity with DevSecOps, GitHub, and CI/CD pipeline practices.
Server, OS and Network hardening.

Responsibilities

Design, review and develop security architectures for systems and networks.
Conduct security assessments and effectively communicate risks identified from vulnerability scans.
Conduct risk management activities including the risk exception process consisting of documenting the risk and gaining business approval if SLAs will be missed.
Contribute in the development of security policies, standards, and procedures.
Evaluate proposed business processes and solutions to embed security requirements upfront.
Coordinate with the Security Operation Center on incident response and provide technical expertise during security incidents.
Collaborate with Product & Engineering teams to ensure security is integrated into all projects and initiatives.
Stay up-to-date with the latest security threats, trends, and technologies.
Support the sales cycle by responding to customer security questionnaires, redlining information security addendums, and interacting with high touch customers.