This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
Product Security Architect, Principal - US Remote/CST or EST
$146,000 - $195,000/Yr
Sprinklr - Trenton, NJ
posted 2 months ago
Full-time - Mid Level
Remote - Trenton, NJ
501-1,000 employees
Publishing Industries
About the position
Join Sprinklr's diverse security team as a key player in shaping the company's security architecture and strategy. This role involves assessing security risks, leading architectural changes, and influencing the product security program across Sprinklr's suite of products and infrastructure. You will work in a dynamic cultural environment, reporting to the VP of Product Security, and collaborate with various teams to enhance security practices.
Responsibilities
- Proactively assess security risks through product deep dives, threat modeling, and design reviews.
- Lead initiatives to mitigate significant platform security issues with wide-reaching impact.
- Define baseline security standards for applications and public clouds.
- Collaborate with engineering teams on post-incident activities and roadmap creation.
- Identify and promote common security design patterns.
- Drive Sprinklr's Secure Software Development Lifecycle and onboard product teams.
- Identify opportunities for security tooling and automation.
- Work independently with developers, cloud engineers, product owners, and other colleagues to understand product architecture and provide security requirements.
- Effectively drive projects to closure, even when working with development teams that may have competing priorities.
- Collaborate closely with Security, Legal, Privacy, and R&D/Engineering teams on security fixes and enhancements.
- Handle urgent or reactive security situations.
- Stay informed on external vulnerabilities and security trends.
Requirements
- 7 - 10 years in product or application security.
- Expertise in large-scale, distributed SaaS applications.
- Proficiency in threat modeling, secure design reviews, and project management.
- Deep understanding of security controls for modern architectures, including API security, containerization and at least one CSP (AWS, Azure, or GCP), with optional expertise in Kubernetes.
- Knowledge of IAM concepts, Single Sign-On (OAUTH, SAML), secrets management, and microservices architecture.
- Experience in network segmentation, VPNs, source code review.
- Ability to rationalize security risk and articulate business risk to stakeholders.
- Influencing engineering leadership to adopt secure-by-design principles.
- Writing business impact reports and advising on security design controls by providing security requirements.
- Strong analytical and problem-solving skills, with the ability to communicate complex security concepts to both technical and non-technical stakeholders.
Nice-to-haves
- Experience with PSIRT teams on security incidents.
- Knowledge of AI security, thick client applications, and Communication Platform as a Service (CPaaS).
- Understanding and addressing customer requirements/concerns to provide security specifications for product teams.
- Public speaking experience at meetups or conferences.
Benefits
- Comprehensive health plans
- Well-being programs
- Financial protection for employees and families
- 401k plan with 100% vested company contributions
- Flexible paid time off
- Generous caregiver and parental leaves
- Life and disability insurance
- Health benefits including medical, dental, vision, and prescription drug coverage
