Sr. Information Security Architect

About The Position

Requirements

• Bachelor's degree in computer science, Information Systems, Computer Engineering, Cybersecurity, Systems Analysis, or equivalent work experience with 7+ years in application design, development, and security.
• Exposure to diverse technologies, including commercial cloud environments and languages such as C#, C++, Java, Python, Go, Rust, PowerShell, Node.js, React, Electron, and Bash.
• Minimum of 5 years in defensive security and 8+ years in IT.
• Knowledge of various information security architectures, concepts, techniques, and supporting security tools.
• Familiarity with common web application vulnerabilities and security platform tools (Firewall, EDR, SIEM, SAST, etc.).
• Experience with CICD platforms, Git, and GitFlow.
• SANS GSEC or equivalent technical or architectural security certification.
• Must be a U.S. Citizen or a Green Card holder with intent to become a U.S. Citizen.

Nice To Haves

• Experience with threat modeling and security review processes.
• Experience securing applications deployed within AWS or Azure.
• Familiarity with OWASP projects and NIST and CISA standards.
• Familiarity with security architecture questions related to machine learning and AI.
• Leadership experience in large, cross-functional teams or projects.
• Ability to communicate clearly and influence outcomes.
• Experience with pattern-oriented design and architecture of high-volume transactional systems.
• Desire for continuous learning and upskilling.
• SANS GWEB, GWAPT, or similar secure development, cloud security, or application security certification.

Responsibilities

• Evolve and mature models, templates, standards, and procedures related to secure application development and architecture.
• Consult with development teams to align with FRS policy and standards.
• Review and create secure application and infrastructure designs and patterns with application development teams.
• Analyze potential business impact and exposure to risks based on emerging security threats and vulnerabilities.
• Evaluate CICD pipeline design and help secure the creation and management of pipelines.
• Assist in identifying and integrating security-focused tooling into development and operations processes.
• Support secure application architecture by fostering constructive dialogue and resolving conflicts.
• Mentor junior security and application development members, acting as a security thought leader.
• Solicit feedback and continuously improve knowledge and skills related to the position.
• Assist with recruiting activities and administrative work.

Benefits

• Medical
• Dental
• Vision
• Pre-tax Flexible Spending Account
• Backup Child Care Program
• Pre-Tax Day Care Flexible Spending Account
• Paid Family Care Leave
• Vacation Days
• Sick Days
• Paid Holidays
• Pet Insurance
• Matching 401(k)
• Retirement/Pension