Platform Security Architect

The Platform Security Architect will be responsible for developing and implementing security architectures for our platforms, with a strong focus on security engineering. This role requires a deep understanding of security principles, cloud technologies, and software development practices, as well as the ability to collaborate with cross-functional teams to ensure secure design and implementation of systems.

Key Responsibilities:

• Security Architecture Development: Design and document security architectures for various platforms, ensuring alignment with industry standards and best practices.
• Risk Assessment: Conduct threat modeling and risk assessments to identify security weaknesses in platform designs and recommend appropriate mitigation strategies.
• Security Engineering: Collaborate with engineering teams to integrate security controls into the software development lifecycle, ensuring that security is a foundational component of all platform deployments.
• Technology Evaluation: Evaluate and recommend security tools and technologies that enhance the security posture of platforms, including identity management, access controls, encryption, and monitoring solutions.
• Policy and Standards Development: Contribute to the development of security policies, standards, and guidelines that govern platform security practices.
• Collaboration: Work closely with DevOps, software development, and IT teams to ensure security requirements are understood and implemented throughout the development process.
• Incident Response Support: Assist in developing incident response plans and participate in post-incident reviews to identify areas for improvement in platform security.
• Training and Awareness: Develop and deliver training programs for engineering and operations teams on security best practices and secure coding techniques.

Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or a related field (Master’s degree preferred).
• 5+ years of experience in information security, with a focus on security architecture and engineering.
• Strong understanding of security principles, secure coding practices, and security frameworks (e.g., OWASP, NIST).
• Experience with cloud security (e.g., AWS, Azure, Google Cloud) and familiarity with containerization and microservices architectures.
• Proficient in risk assessment methodologies and security testing techniques (e.g., penetration testing, vulnerability assessments).
• Excellent analytical and problem-solving skills, with the ability to communicate complex security concepts to non-technical stakeholders.
• Experience with security tools and technologies (e.g., firewalls, IDS/IPS, SIEM, DLP).

Preferred Qualifications:

• Relevant certifications (e.g., CISSP, CISM, CEH, AWS Certified Security Specialty).
• Experience in Agile development environments and familiarity with DevSecOps practices.

Salary Range:

The anticipated base salary range for this position is between $128,000 and $160,000. Base salary ranges may vary by geographic location and relevant experience, education, certifications, and seniority as compared to others doing substantially similar work. There is no guarantee an offer will be at the top of the posted range based on the salary analysis.

Here are some of our local benefits:

• Three week's paid time off on top of 12 paid holidays, floating holidays, and holiday allowance increase based on tenure
• Gym membership subsidy
• Medical and dental insurance
• Pet insurance
• Employee Assistance Program
• College Savings Plan
• Travel assistance
• 401(k) with up to 4% employer match