Security Architect

What you'll do

• Conduct product design & architecture reviews with product managers and engineering teams.
• Conduct vulnerability assessment on infrastructure and testing (SAST, DAST) on company’s products and provide recommendations for improvements.
• Conduct vendor assessments for supply chain security.
• Oversee external pen testing engagements.  Remediation coordination.
• Assist Compliance in meeting security standards (ISO, SOC2, PCI etc.)
• Work with cross functional teams from Product, IT, Engineering and Compliance to establish strategy, controls and plans.
• Enhance security team accomplishments and competencies by planning the delivery of solutions and answering technical questions.
• Plan, research, and design security architecture for IT systems in cloud and on-prem.
• Determine security protocols by evaluating business strategies and requirements.
• Respond to and investigate security incidents and provide thorough post-event analyses.
• Review system security measures and implement necessary enhancements.
• Verify security systems by developing and implementing test scripts.
• Maintain current, up-to-date knowledge and best practice through emerging security practices and standards, participating in educational opportunities, reading professional publications, and participating in professional organizations.

What you need

• Associates degree or higher in computer science, IT, or a related field
• Knowledge and skills typically associated with 8+ years’ experience in IT risk management and information security.
• Strong working knowledge of IT risks, cyber security, and computer operating software.
• Advanced understanding of security protocols, cryptography, and security (AES, encryption keys, certificates)
• Certifications preferred (CEH, CISSP, CISA)
• Expert in SIEM, IDS/IPS, Firewalls, VPNs and endpoint protection tooling.
• Skilled at using security tools such Metasploit, Kali Linux, Wireshark etc.
• Should have advanced understanding of security/compliance standards SOC, ISO, PCI-DSS, Fed Ramp, NIST, CIS etc.
• Expert in designing security tools and protocols for secure handling of PII data sets in a global setting.
• Good understanding of Azure and AWS security. Certifications preferred.
• Experience implementing multi-factor authentication.
• Understanding of Linux operations
• Knowledge of Kubernetes and experience with containers and container-based infrastructure at scale.
• Knowledge and applied use of coding/scripting in Python and Bash.