Lead Security Architect

Job description

Tasks

• Partner with application teams and offer consulting to secure their CI/CD implementation
• As an expert in the field of DevSecOps, I offer security architecture consulting for the selection of suitable tools
• Offer security consulting to accelerate application migrations to the cloud
• Partners with application teams to ensure that 'secure by design' principles are followed when modernizing their applications
• Execute complex initiatives that span multiple disciplines and/or ambiguous projects
• Evaluate and select from existing and new technologies those that best fit the business or project requirements
• Promote the exchange of expertise through advice, presentations and documentation, etc.
• Understand in depth the decision making processes when selecting technologies, such as design, data security, client/server communication, etc.

Requirements

• Bachelor's degree and experience in information security or an equivalent combination of education and work experience
• Excellent consultative and communication skills and the ability to work effectively with clients, partners and IT management and staff
• Six years industry experience with a combination of mainstream information security role and application development is preferred
• CISSP, CISM or Security+ certification is preferred
• Strong collaboration and analytical skills
• Deep knowledge of application or infrastructure architecture, usually with experience in multiple system technologies

Requirements/responsibilities

• Experience in the context of application development and DevOps
• Very good understanding of CI/CD pipeline and secure application development methods
• Experience with security tools related to DevSecOps - SAST, DAST, IAST
• In-depth knowledge of various cybersecurity frameworks, standards and SSDLC

Lead Security Architect

• 10+ years of extensive experience in IPS/IDS, network and endpoint security technologies
• Knowledge of AI/ML, DevSecOps, CI/CD pipeline, IaC and relevant tools
• Experience in dealing with threat vectors and developing relevant plans to protect the organization from cyber threats
• Lead security architecture reviews and provide analysis with observations and results
• Experience in providing security consulting to application teams
• Knowledge of network architecture concepts including topology, protocols and components
• Understanding of SEIM and experience with Microsoft Defender, Entra, KQL, APIM, endpoint protection, scripting, CoPilot
• Knowledge of privilege access management, threat hunting, data protection, encryption, authentication/authorization, vulnerability management systems, cloud security status management
• Very good understanding of concepts related to Docker, containers, serverless computing and Kubernetes
• Must be able to represent the security team in technical discussions and work towards outcomes with minimal guidance

We offer

• A flexible and collaborative work environment in an organization where financial strength and stability are an asset that encourages us to explore new ideas
• Movement within the organization is encouraged, senior leadership is accessible, and you can take pride in working for a company that is committed to supporting the communities we serve

Salary

• $114,700 - $194,900 USD