Senior Security Architect

About The Position

Requirements

• Bachelor's degree in Information Technology, Computer Science, or a related field.
• 12+ years of experience in the IT industry.
• 12+ years of proven experience in security.
• Expertise in product/application security architecture, infrastructure security, and application security.
• Applied knowledge of NIST and continuously monitored security controls.
• Strong programming knowledge in Node.js and Python.
• Experience with modern security tools for secure application delivery.
• Knowledge of securing data through classification, tagging, encryption, and obfuscation capabilities (experience with MarkLogic and Apache NiFi is a bonus).
• Strong software development skills in Agile methodologies.
• Strong knowledge of Linux operating systems and open-source technologies.
• Strong knowledge of AWS Cloud Platform.
• Excellent written and verbal communication skills, along with business acumen.

Nice To Haves

• CISSP (Certified Information Systems Security Professional) certification.
• Domain knowledge of Integrated Tax Systems.
• Extensive public sector experience.

Responsibilities

• Perform risk analysis and risk management, communicating results effectively.
• Champion security throughout the entire SDLC and DevSecOps processes.
• Collaborate with development teams to identify and build secure coding solutions, including application vulnerability scanning and penetration testing.
• Review application architecture to identify security gaps and improve the security posture of multi-tier applications in public cloud environments like AWS.
• Conduct secure design and coding assessments to diagnose and propose remediations for vulnerabilities in code and applications.
• Utilize standard tools and secure architecture methodologies to evaluate design trade-offs for updated architectures.
• Work with Product Management to ensure changes align with business objectives and customer requirements.
• Identify, train, and partner with security champions within engineering and product teams.
• Support security champions in assessing risk and identifying architectural gaps.
• Coach and train teams on security architecture, threat modeling, and secure coding practices.
• Provide technical guidance on methodologies, frameworks, and best practices to developers.
• Ensure compliance with security policies and processes to support secure software development goals.

Benefits

• Paid time off
• Flexible work schedules
• Health, Dental and Vision insurance
• Life insurance
• Long and Short-term disability insurance
• 401(k) with company match & immediate vesting
• Tuition and Professional Development Reimbursement
• Training
• Employee Referral Bonus Program