Application Security Architect
Remote, FR
Bentley Systems
Application Security Architect
Location: Home-Based- Europe
We are seeking a talented Application Security Architect to be part of our dedicated software security team (AppSec) at Bentley Systems. The future addition to this team will play a crucial role in safeguarding our cutting-edge products. Our product security team is committed to continuously elevating security standards and staying ahead of the curve in the ever-evolving cybersecurity landscape. This role demands exceptional expertise, a passion for learning, and a willingness to embrace challenges. You'll collaborate with a team of remotely-based experts from across the globe, working across a diverse range of technologies, including C#, Typescript, JavaScript, Node.js, single-page applications and Electron applications, Azure cloud services, K8s, and more.
We will rely on you for the following:
- Define security best practices and standards.
- Perform security architecture and design reviews of applications.
- Work independently with developers to ensure secure design, development, implementation, and verification of applications.
- Provide remediation guidance and recommendations to developers and administrators.
- Lead Secure Software Development Lifecycle best practices and standards.
- Participate in and advance threat modeling practices.
- Help stakeholders make risk-based decisions.
- Train developers and create educational presentations.
- Develop tools and automation supporting responsibilities.
What You Bring to The Team:
- 4-7 years of application Security Architecture experience.
- Background experience in software and development.
- Strong experience in threat modeling software systems.
- Proficiency in reading, writing, and auditing code and the ability to learn new languages/technologies.
- Proficiency in cloud technologies
- Experience with OWASP Top10 or SANS Top 25
- Experience breaking down complex systems and applications to identify threats.
- Certification in CISSP or CCSP, it’s a plus.
- Strong problem-solving capabilities using various technologies.
- Capability to research a new topic and to learn quickly.
- Excellent ability to communicate, verbally and in writing, complicated technical issues and the risks they pose to developers, network engineers, system administrators, and management.
- Requires sitting or standing at will while performing work on a computer (or any other physical requirements). The role requires communication with managers, peers, and other colleagues of the company in person, and by utilizing Microsoft Teams chat, calling, and meeting functions.
What would make you stand out:
- Knowledge/Experience of containerization solutions, such as Kubernetes, Docker, and Istio.
- Knowledge/Experience of web technologies (JavaScript, HTML5, HTTP, REST, SOAP, etc.).
- Good knowledge of some of the following programming platforms/languages: .Net Core. Node.js, C#, Java, JavaScript/TypeScript, C/C++.
- Knowledge of OAuth 2.0/OpenID Connect.
- Ability to make risk-based, unbiased, judgments that include both technical and business impacts.
This role is subject to multiple background checks: conduct search, criminal check, global sanctions & enforcement, and global employment checks. An offer for this role is contingent upon successful verification of these checks, which will be performed by an external vendor, HireRight, during the written offer process.
What We Offer:
- A great Team and culture – please see our Recruitment Video
- An exciting career as an integral part of a world-leading software company providing solutions for architecture, engineering, and construction.
- Competitive Salary and benefits
- The opportunity to work within a global and diverse international team.
- A supportive and collaborative environment
About Bentley Systems:
Bentley Systems (Nasdaq: BSY) is the infrastructure engineering software company. We provide innovative software to advance the world’s infrastructure – sustaining both the global economy and environment. Our industry-leading software solutions are used by professionals, and organizations of every size, for the design, construction, and operations of roads and bridges, rail and transit, water and wastewater, public works and utilities, buildings and campuses, mining, and industrial facilities. Our offerings, powered by the iTwin Platform for infrastructure digital twins, include MicroStation and Bentley Open applications for modeling and simulation, Seequent’s software for geoprofessionals, and Bentley Infrastructure Cloud encompassing ProjectWise for project delivery, SYNCHRO for construction management, and AssetWise for asset operations. Bentley Systems’ 5,000 colleagues generate annual revenues of more than $1 billion in 194 countries.
Equal Opportunity Employer:
Bentley is proud to be an equal opportunity employer and considers for employment all qualified applicants without regard to race, color, gender/gender identity, sexual orientation, disability, marital status, religion/belief, national origin, caste, age, or any other characteristic protected by local law or unrelated to job qualifications.
#LI-VP
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Audits Automation Azure C CCSP CISSP Cloud Docker Industrial Java JavaScript Kubernetes Node.js OpenID OWASP Product security SANS SDLC TypeScript
Perks/benefits: Career development Competitive pay
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs