Work closely with engineering, operations, and security specialists to ensure adequate security solutions and controls are in place throughout all IT systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements. Assess and understand the organization’s current security posture and future architecture requirements, providing recommendations for improvement and risk reduction. Ensures implemented solutions support cybersecurity architecture objectives (availability, scalability, performance, security, etc.), as appropriate, and monitors implementation activities to ensure architecture and design principles are upheld. Supports the implementation of technical artifacts (frameworks, standards, and repeatable patterns, etc.) that constitute the enterprise information security architecture and solutions and work with infrastructure teams to ensure adoption. Serve as a security expert in application development, database design, network and/or platform (operating system) efforts, helping project teams comply with enterprise and security policies, industry regulations, and best practices. Design security configuration guidelines for information technology devices and systems, as well as mechanisms for assessing compliance within those guidelines. Participate in the design and implementation of a comprehensive Zero Trust Architecture framework to ensure the confidentiality, integrity, and availability of our systems and data. Contribute the creation of security policies, access controls, and authentication mechanisms based on Zero Trust principles. Evaluate existing network and security infrastructure, identify vulnerabilities, and recommend enhancements to align with Zero Trust principles. Familiarity with OWASP, SANS Top 20 and prevention/remediation techniques and their implementation. Ability to work in a group development environment as an application security engineer across software engineer, QA engineer and build/test/release engineer teams. Experience in deploy/maintain/support/analyzing DAST/SAST scan result Manage the tactical execution of short- and long-term objectives through the coordination of activities with a direct responsibility for results, including costs, methods, and staffing.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Job Type
Full-time
Career Level
Principal