Staff Security Architect

Job Description

Job Title: Staff Security Architect

Job Location: US - Remote

Description:

We are looking for a Security Architect to join our team of security pros to partner with teams across the organization to ensure we meet a high standard of security for our customers and ourselves. You will leverage a broad range of technical knowledge and security capabilities to contribute to designs and provide guidance to teams responsible for protecting the enterprise in addition to those building the products that deliver high-powered analytics to our customers.

Key Responsibilities:

• Partner with product engineering teams to design secure cloud applications, services, platforms, and security controls in multiple public and private cloud environments built on AWS, Azure, and GCP
• Provide input to security architecture roadmaps and reference architectures including design principles, best practices, and standards
• Perform reviews of architecture diagrams and documentation, including threat models, to identify risks and opportunities to improve the security posture of solutions
• Serve as a trusted advisor to product engineering teams across multiple security domains
• Work with product managers and owners to plan and prioritize security-focused backlog items
• Engage with engineering, product, IT, governance, risk, and compliance leaders to ensure security considerations underpin decisions about new technologies, solutions, and projects
• Problem solve and identify potential alternatives to solve challenges, explaining any trade-offs and risks effectively
• Maintain knowledge of emerging security threats, trends, and best practices to factor them into guidance and decisions on an ongoing basis

Qualifications:

• Bachelor's degree or equivalent experience
• 4+ years experience in technical domains including application development, cloud computing, security, identity and access management and infrastructure
• Experience working in AWS, Azure, and/or GCP and their security offerings
• In-depth knowledge of cloud, network, and infrastructure security
• Experience designing and securing solutions in complex hybrid cloud enterprise and SaaS environment(s)
• Demonstrated ability to define security requirements and partner with and guide engineering teams in design and implementation of those requirements
• Ability to assess software designs and architecture diagrams for security issues
• Strong verbal and written communication skills; ability to communicate requirements and risks to stakeholders from engineering to senior leadership
• Knowledge of security best practices and common security frameworks such as NIST, ISO, Common Criteria, OWASP, etc.
• Experience developing threat models and security-focused architecture documentation

Bonus Points:

• Experience in a customer-facing role such as consultant, solutions engineer, or solutions architect
• Security focused certifications like CCSK, CCSP, CISSP,
• Experience working with FedRAMP, PCI-DSS, HIPAA
• Experience contributing to the security community (e.g. open-source tools, presenting at conferences)
• Application security experience