United States onlyWe are looking for a Lead Security Architect DevSecOps/AppSec to conduct security risk assessments, design new security solutions, and lead vendor reviews. The ideal candidate will have broad technical knowledge of current and emerging cyber threats and security technologies.
Requirements
- 7+ years of relevant experience, including threat modeling, security design reviews, and security architecture and deployment models
- Experience with CI/CD pipelines, such as Jenkins, Azure DevOps Pipelines, AWS CodeBuild, and GitHub Actions
- Extensive knowledge of secure software development principles and threat modeling
- Proficient use of Git-based workflows, including branch management, code reviews, and integrating security checks into pull requests
- Understanding of core GitHub security features such as branch protection rules and GitHub Actions secrets management
- Skilled in scripting languages such as Python, Bash, or Groovy for automating security tasks and pipeline operations
- Experience with Infrastructure-as-Code tools like Terraform and Application Deployment tools like Helm
- Knowledge of integrating Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA) tools into CI/CD pipelines
- Proficiency in containerization technologies, such as Docker, and orchestration platforms, like Kubernetes
Benefits
- Comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks
- Bonus structure (short-term incentives, long-term incentives and/or sales compensation)
