Staff Product Security Architect (Hybrid or Remote - US only)

About The Position

Requirements

• 7+ years of relevant experience and a Bachelor's degree in Computer Science or equivalent.
• Proven experience in securing multi-tenant compute services, proxy servers, Kubernetes and modern APIs.
• Extensive experience performing threat modeling, secure design reviews and implementing controls to mitigate security threats for new and existing cloud-based products.
• Deep understanding of authorization, authentication and encryption protocols.
• Experience with Linux administration at scale, associated intrusion/manipulation techniques, and standard methodologies for system hardening and process isolation.
• Working knowledge of common web and container based vulnerabilities.
• Strong grasp at all layers of the information security stack including hands-on security engineering.
• Strong analytical and problem-solving skills, with the ability to analyze complex security issues and recommend effective solutions.
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with both technical and non-technical stakeholders.

Responsibilities

• Enhance the security of Fastly's content delivery and compute products by working closely with engineering and product teams to integrate security into the design and development of Fastly products.
• Perform secure architecture and design reviews of cloud-based products and collaborate with engineering and product teams to integrate secure-by-design principles into engineering builds.
• Conduct thorough security assessments of products developed by our content delivery network and compute platform product lines to identify security threats to Fastly and define tactical and strategic mitigation plans to assist with remediation.
• Perform secure code and configuration reviews as part of the product development lifecycle and provide recommendations that strengthen Fastly's security posture.
• Influence product design paradigms to incorporate security best practices and drive requirements for security into the release cycle.
• Maintain a clear view of the overall product development roadmap and associated product lifecycle to ensure security is appropriately incorporated throughout.
• Become a domain expert in the content delivery network (CDN) and compute platform products and represent that knowledge with prospects, customers, and auditors.
• Research and understand new threats and attack vectors that impact Fastly and work with product owners to design appropriate prevention, detection and remediation initiatives.
• Involvement in Fastly's Secure SDLC, focusing on both collaborative hands-on design work and training initiatives across the company.
• Influence Fastly's security strategy by leveraging the collective strength of the security team and articulating the capabilities needed to effectively manage cyber threats.

Benefits

• Comprehensive benefits package including medical, dental, and vision insurance.
• Family planning, mental health support along with Employee Assistance Program.
• Insurance (Life, Disability, and Accident).
• Flexible Vacation policy and up to 18 days of accrued paid sick leave.
• 401(k) (including company match) and an Employee Stock Purchase Program.
• 11 paid local holidays, 11 paid company wellness days.