Application Security Architect

Remote US

Full Time Senior-level / Expert
RapidAPI logo

RapidAPI

Use RapidAPI to Find, Connect, & Share 1000s of APIs using our Multi-cloud platform. Improve Developer Experience with API Design, Testing, Monitoring, & More!
Apply now Apply later

RapidAPI is a team of creators building for developers. We are the world's largest API Hub where over 4 million developers find, test, and connect to 40,000 APIs (and growing!) — all with a single account, single API key, and single SDK.
Our users range from independent developers to the largest companies in the world. We work hard to ensure it's easy for developers to build, discover, and connect to APIs faster while providing enterprise-wide visibility and governance. As a result, entrepreneurs and enterprises can concentrate on creating value and business outcomes.
We operate at a significant scale, but the opportunity is even bigger. You have an unprecedented opportunity to make a massive difference and empower developers to build modern software through API innovation while doing the most critical work of your career.

The RapidAPI Application Security Architect position plays a critical role in supporting product and development efforts in a growing global environment. You will be responsible for building, implementing, and supporting tooling to ensure that the RapidAPI platform is implemented with security best practices. You should be able to work in a fast-paced environment with a passion for providing an excellent developer experience while ensuring security guardrails are in place to build secure solutions. YOU HAVE:- 7+ years of application security experience- 3+ years of application penetration testing experience- 3+ years of experience with AWS- Deep experience with Kubernetes and container-based environments- Support multiple languages: Node.js, GraphQL, and terraform- Experience building secure pipelines and familiarity with modern secure development practices- Experience partnering with teams to support regulatory frameworks (such as ISO 27001:2013, NIST 800-53, GDPR, PCI-DSS, FedRAMP)- Ability to translate technical security details into product development roadmaps and security frameworks- Strong planning, execution, and collaborative skills YOU WILL:- Work closely with leadership on developing roadmaps and outlining projects to remediate product security gaps- Develop security requirements and aid in architecture designs for the product, engineering, and development teams- Review security controls with project owners to ensure security requirements are appropriately implemented- Build CI/CD enhancements and automation to ensure a security-first strategy- Review and analyze SAST tooling to provide actionable feedback to developers- Be a subject matter expert on container security and deliver guidance to development and platform engineering teams- Translate complex threat modeling and security assessments by providing actionable/easy-to-read reports for product and development teams- Participate in security incident response activities and drive remediation- Actively engage and advise on secure coding practices for development teams- Mentor security engineers and software developers on effectively designing and implementing secure products- Work closely with the compliance team to define innovative and alternative approaches to meet regulatory obligations associated with data governance (Security, Privacy and Availability) requirements  This is an opportunity to play a key role in a fast-growing and high-scale startup company distributed across the globe. This role may not be for everybody as we are looking for individuals who are willing to challenge the “status quo” and are looking to influence and change the way in which Security, Privacy and Compliance to regulatory obligations are defined and achieved for our Enterprise Customers and Developer community.
This is an opportunity to play a key role in a fast-growing and high-scale startup company distributed across the US, Europe, and Israel. You'll be taking our product to the next level within a high talent density team and out-of-the-box thinking. Having raised $150 million in a Series D investment round in 2022; you’ll be working with a team that is scaling globally, fast.
If this sounds like you, click apply below! We’d love to hear from you.

Tags: APIs Application security Automation AWS CI/CD Compliance FedRAMP GDPR Governance Incident response ISO 27001 Kubernetes NIST Node.js Pentesting Privacy Product security SAST Security assessments Strategy Terraform

Perks/benefits: Career development Startup environment Team events

Regions: Remote/Anywhere North America
Country: United States
Job stats:  10  2  0
  • Share this job via
  • or

Other jobs like this

Explore more Cybersecurity career opportunities

Find open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Analysis, Cryptography, Digital Forensics and Cyber Security in general, filtered by job title or popular skill, toolset and products used.