Cybersecurity Architect

We are seeking a highly skilled Software Security Architect to design, implement, and oversee reviews to secure our applications. This role involves working closely with development teams to integrate security best practices, identify vulnerabilities, and ensure compliance with security standards. The ideal candidate will have a deep understanding of application security, cryptographic principles, threat modeling, and secure software development lifecycle (SDLC) practices. This role requires a deep understanding of software technology and user needs to balance security controls.

This role can be performed remotely. The role must be available during U.S. working hours, central timezone.

What you will do:
● Assess software requirements and perform threat modeling.
● Conduct security reviews to ensure the right level of controls are designed and implemented.
● Collaborate with development teams to integrate security controls and best practices into the SDLC.
● Develop and implement security architecture and strategies for software applications.
● Establish standards, and guidelines for software development.
● Stay updated on emerging security threats, industry regulations, and compliance frameworks (e.g., OWASP, BSIMM, NIST, GDPR, ISO 27001).
● Work with DevOps teams to integrate security into CI/CD pipelines and cloud-based environments.
● Perform code reviews and provide guidance on secure coding practices.
● Provide training and mentorship to developers on secure software development methodologies.

What you need to have:
● 7+ years of experience in software security or application security. This extends to AI security.
● Strong understanding of secure coding practices, application security vulnerabilities, and mitigation strategies.
● Hands-on experience with security testing tools (e.g., Burp Suite, Fortify, Checkmarx, OWASP ZAP).
● Knowledge of APIs, cryptographic protocols, authentication mechanisms, and secure communication practices.
● Experience with cloud security architectures (AWS).
● Proficiency in one or more programming languages (e.g., Elixir, JavaScript, and Python).
● Familiarity with compliance standards such as HIPAA.
● Demonstrated passion for curiosity and continuous learning, staying up to date on emerging technologies and best practices, and proactively sharing knowledge to support team growth