Web Application Security Architect

Recruiter
R. Cope & Associates Inc.
Location
Norwalk
Salary
Competitive
Posted
Aug 13, 2017
Closes
Aug 14, 2017
Role
IT
Industry
Accounting
Employer Type
Direct Employer
Employment Type
Permanent
Hours
Full Time
Job Description

Our rapidly growing technology leader client is looking for a Web Application Security Architect to join their company!

This position sits in the development team with a dottled line to the CISO and will be mentoring the team on secure software development lifecycle and practices such as threat modeling, security reviews, penetration tests, and security incident response. At least 5 years of security design and architecture experience.is required for the role.

Candidate can work out of in Boston, Norwalk. CT or Rochester, NY

Job Description

Candidate can work out of in Boston, Norwalk, CT or Rochester, NY - they will possibly relo

Our client protects business data and provides secure connectivity for tens of thousands of the world's fastest growing companies. Their Total Data Protection solutions deliver uninterrupted access to business data on site, in transit and in the cloud. Thousands of IT service providers globally rely on their combination of pioneering technology and dedicated services to ensure businesses are always on, no matter what. Company is headquartered in Norwalk, Connecticut and has offices in Rochester, Boston, Portland, Toronto, London, Singapore and Sydney.

Primary Responsibilities:

  • Building strong relationships with technical teams.
  • Providing coaching, mentoring and security expertise for all development teams.
  • Ensuring that the security program is aligned with product strategy and objectives.
  • Acting as the main technical point of contact for product teams as it relates to security and privacy.
  • Conducting complete security lifecycle architecture and technical assessments, including but not limited to design requirements assessment, threat modeling, code review and risk assessment.
  • Guiding security requirements and objectives for product features.
  • Advising on secure architectures related to desktop applications, web applications, and cloud computing as it relates to core products and services.
  • Quantifying residual product risk and identifying appropriate mitigation activities.
  • Working with product owners, developers, penetration testers and other security architects on efforts to mitigate identified risks in existing products.
  • Defining high quality standards for application security.
  • Educating developers on secure coding principles and security best practices.
  • Overseeing integration of automated security tools to drive secure product as it is developed.
  • Building a standardized set of security product requirements and design patterns into product and service offerings.
  • Representing the company within the security community and with customers on topics related to the security of Datto's products and services.
  • Recruiting, selecting, and mentoring a team of security professionals to support the security function as the company continues its growth and expansion.

Desired Skills & Experience:

  • Bachelor's degree in computer science, software engineering or equivalent experience.
  • At least 5 years of security design and architecture experience.
  • Experience with compiled, interpreted and scripting languages (PHP, Symfony, C and Python).
  • Strong knowledge of secure software development lifecycle and practices such as threat modeling, security reviews, penetration tests, and security incident response.
  • Understanding of security by design principles and architecture level security concepts.
  • Knowledge of current and emerging security techniques for exploiting security vulnerabilities.
  • Understanding of Agile software development practices.
  • Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among project stakeholders in a fast-paced environment.
  • Technical leadership experience in the software security field.
  • Driven to influence software security across an organization.

Responsibilities:


50% Conducting complete security lifecycle architecture and technical assessments, including but not limited to, designing requirements assessments, threat modeling, code review and risk assessments
25% Advising on secure architectures related to desktop applications, web applications, and cloud computing as it relates to core products and services
25% Authoring remediation and risk mitigation strategies for DevOPs team

Recommended knowledge:
• Familiarity with industry baselines including OWASP and SANS Top 25
• Experience with compiled, interpreted and scripting languages (PHP, Symfony, C and Python)
• Knowledge of exploitation methods and mitigation strategies
• CISSP, Security+, CCNA Security, GIAC or other appropriate certifications

Candidates can be in Boston, Norwalk, CT or Rochester, NY

Qualifications

Desired Skills & Experience:

  • Bachelor's degree in computer science, software engineering or equivalent experience.
  • At least 5 years of security design and architecture experience.
  • Experience with compiled, interpreted and scripting languages (PHP, Symfony, C and Python).
  • Strong knowledge of secure software development lifecycle and practices such as threat modeling, security reviews, penetration tests, and security incident response.
  • Understanding of security by design principles and architecture level security concepts.
  • Knowledge of current and emerging security techniques for exploiting security vulnerabilities.
  • Understanding of Agile software development practices.
  • Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among project stakeholders in a fast-paced environment.
  • Technical leadership experience in the software security field.
  • Driven to influence software security across an organization.
Company Description We are a Large International Staffing, Recruitment and Executive Search Firm based in Toronto , Ontario but recruit throughout North America, Asia and Europe in all areas of I.T. , Sales and Marketing , Accounting & Finance , Human Resources, Engineering, Manufacturing , Operations and Health Care

More jobs like this