Senior Security Architect
This position will be responsible for working cross functionally with application platform teams, product managers, IT and operations teams throughout the development and project cycles, performing research, identifying security risks and mitigating those risks by providing guidance and assistance with remediation plans. In addition, ensuring that our internal and production systems, applications, network and infrastructure are designed, implemented and operated in accordance with security standards and industry best practices.
This is a key security role working within a dedicated Security team, which requires a dynamic senior security architect who has a passion for proper security design and deep experience in secure software development.
Consult with product engineering and operations on technical security issues
Lead cross-functional teams in the discovery and interpretation of security requirements
Design and implement security-related systems and functionality
Conduct vulnerability assessments and audits on software, architecture and vendors
Assist in internal and external application penetration testing methodologies and execution
Bachelor's Degree or equivalent work experience.
8+ years professional experience in: Operating systems: Windows,Unix, Networks: Web servers: e.g. Apache, IIS, Software Development Life Cycle: e.g. Agile
6+ years professional experience in dedicated information security role
CISSP and CSSLP certifications a plus
Strong organizational, operational and process capabilities
Strong understanding for data mining and building custom web front ends and MySQL backends
Past experience in making data connectors via AD, LDAP and various API’s
Expertise in MySQL
Scripting abilities a plus (bash, php, perl,vbscript)
Demonstrated experience and knowledge of secure multi-tier architectures and web based applications
Demonstrated experience in the design and implementation of multi-factor authentication
Strong understanding of security principles, best practices architectures, tools and processes
Possess strong knowledge of system, database and network security
Possess strong knowledge of encryption technologies and secure storage