Cloud Security Architect

At JFrog, we’re reinventing DevOps to help the world’s greatest companies innovate -- and we want you along for the ride. This is a special place with a unique combination of brilliance, spirit and just all-around great people. Here, if you’re willing to do more, your career can take off. And since software plays a central role in everyone’s lives, you’ll be part of an important mission. Thousands of customers, including the majority of the Fortune 100, trust JFrog to manage, accelerate, and secure their software delivery from code to production -- a concept we call “liquid software.” Wouldn't it be amazing if you could join us in our journey?

JFrog is looking for a Cloud Security Architect to join our CSO office. In this role, you will provide cyber security expertise in the analysis, assessment, development, and evaluation of security solutions and architectures to secure applications, infrastructures, and networks. You will play a key role in understanding the needs of our cloud customers.

As a Cloud Security Architect  in JFrog you will...

• Establish product security requirements
• Mentor and provide trusted technical security advise together with resolving technical customer challenges
• Provide best practices on secure foundational cloud implementations, automated provisioning of infrastructure and applications, cloud-ready application architectures, and more
• Design cloud security KPIs and improve our SaaS security practices and processes
  ( CSPM, API protection, runtime workload protection, k8s security, Terraform security, Data security posture, vulnerability management)
• Design, engineer, and deploy custom automation DevSecOps products with Focus on open source technologies. Execute JFrog DevSecOps model effectively
• Partner with cross-functional teams (products, DevOps, and architects) to deliver widely impactful security initiatives

To be a Cloud Security Architect at JFrog you need...

• 5 years of experience in cloud security architecture and infrastructure (experience in AWS, GCP and Azure), knowledge in securing containerized environments (Docker, K8s)  
• Proven management skills
• Experience leading cloud projects from start to finish and mentoring other security practitioners
• Design and run multiple POCs of open-source security tools and assist other security specialty teams in their automation efforts
• Practical knowledge of applied cryptography and common attacks against modern cryptographic algorithms (encryption at rest, TLS, hashing, etc)
• Excellent interpersonal skills and effective written and verbal communication skills
• Familiarity with DevSecOps principles such as CI/CD or IaC - An advantage
• Familiarity with cloud security platforms such as CSPM/DSPM/SSPM/CNAP - An advantage
• Certifications in a public cloud (level of an architect, security engineer/specialist)