Job Description

The Senior Staff Security Engineer (Architect) will be responsible for designing, implementing, and maintaining security services that support our business. This role requires a deep understanding of application security, security tools, engineering environment setup, and data architecture. The Security Architect will work cross-functionally to ensure the security of our digital landscape and drive impactful outcomes.

Primary Duties:

Application Security:

Design and deploy advanced security controls to safeguard applications.

Establish secure Software Development Life Cycle (SDLC) and DevSecOps processes.

Conduct code reviews, threat modeling, and vulnerability assessments using Static/Dynamic Application Security Testing (SAST/DAST) methodologies and tools.

Implement security controls for web-based SaaS applications, including API Security and Web Application Firewalls (WAF).

Security Tools:

Evaluate, deploy, and maintain a suite of security tools, including SIEM, IDS/IPS, DLP, endpoint protection, and threat intelligence platforms.

Integrate security tools into the organization’s infrastructure, ensuring seamless interoperability.

Automate security processes and improve operational efficiency using scripting languages such as Python and PowerShell.

Engineering Environment Setup:

Work with IT, DevOps, and engineering teams to ensure secure deployment and operation of applications within Cloud Native environments (AWS, Azure, GCP).

Develop automated security testing and validation systems using tools like Terraform and CloudFormation.

Shape security services strategy and execution across disciplines.

Data Architecture:

Architect and develop secure data systems, ensuring the protection of sensitive data such as Electronic Health Records (EHR) and Clinical data.

Implement and manage tools for continuous vulnerability scanning and patch management.

Leverage data to understand trends, metrics, and opportunities to improve security posture.

Minimum Qualifications:

BS/BTech (or higher) in Computer Science, Information Technology, Cybersecurity, or a related field, or 10 years of security domain experience without a degree.

6+ years of experience in securing and deploying applications within Cloud Native environments.

3+ years of experience in a dedicated application security role.

Extensive experience with security tools and methodologies.

Proficient in coding languages such as Python, R, C++, and JavaScript.

Strong familiarity with server-side web technologies (e.g., Java, Python, Scala, C#, C++, Go).

Preferred Knowledge, Skills and/or Abilities:

Knowledge of health-tech systems, including EHR and Clinical data.

Experience with AI/LLM and machine learning architectures.

In-depth knowledge of OWASP Top 10 vulnerabilities and best practices for containment and remediation.

3pillar Global

Mid Fullstack Java Engineer (cybersecurity project)

👋 Greetings, future tech savant: Embark on an exciting journey into the realm of software development with 3Pillar! We extend an invitation for you to join our team;

engineer
java
exec

Underdog Sports

Senior Security Engineer

About the role and why it’s unique: Manage and optimize tooling for cloud security monitoring Investigate security incidents, perform root cause analysis, and recommend ;

infosec
engineer
senior

Connectos

Security Analyst (AU Managed Services, WFH)

Salary: P70,000 to P90,000 (Monthly Package)Schedule: Shifting between 09:00AM to 9:00 PM AEST and 09:00 PM to 09:00 AM AESTWhat are we looking for?Skills Required: Previ;

infosec
analyst

Clickhouse

Detection and Incident Response Security Engineer

The Security Team is responsible for providing key security capabilities covering application, cloud and enterprise security, incident response, detection and GRC. Our te;

infosec
engineer

Senior Staff Security Engineer (Architect), Remote

Job Description

USA Only

Security

yesterday