Product Security Architect

Posted 29 days agoViewed

💎 Seniority level: Senior, 7+ years

📍 Location: Mexico

🔍 Industry: Software and Digital Engineering

🏢 Company: Encora👥 10001-10001💰 $200,000,000 Private over 5 years agoBig Data Cloud Computing Software

⏳ Experience: 7+ years

🪄 Skills: DockerLeadershipProject ManagementSoftware DevelopmentCybersecurityKubernetesCommunication SkillsCollaborationLinuxMicroservices

7+ years of experience across multiple security domains with an emphasis on product security and cloud-native security.
4+ years of security architecture experience executing product security initiatives (i.e. secure architecture, SSDLC, threat models, and risk assessments).
Expert knowledge of modern web application components, development, architecture, and design principles.
Hands-on experience with design, code review, and securing products and solutions for public cloud-based applications and infrastructure.
Experience architecting and developing product-centric security solutions.
Expert knowledge securing internal microservices and public APIs.
Experience securing applications deployed using Docker, Kubernetes, and public cloud environments.
Product security experience working for a SaaS-based organization.
Excellent leadership and project management skills, with a track record of driving security initiatives within software development teams.
Excellent communication skills (both written and verbal).
Self-motivated, self-directed, and self-organized.

Partner with engineering and platform teams to identify and solve complex security problems.
Contribute to the vision and roadmap to increase the security posture of our code and products.
Conduct security reviews of product designs, code, and configurations to minimize software risk.
Conduct comprehensive threat modeling exercises and testing to identify security risks and vulnerabilities while collaborating with product teams.
Identify security gaps and provide strategic recommendations for remediation.
Address security issues identified throughout the secure software development lifecycle.
Conduct security testing beginning from the product planning phase continuing through production deployment.
Lead in the research, development, and implementation of new product security capabilities.
Develop and implement quantifiable application risk assessments of our client products and infrastructure.
Scale the impact of Cyber Security by contributing and leading various Security Champion Initiatives.
Define and implement security requirements ensuring alignment with industry standards and best practices.
Ability to work independently, and lead both cyber security and cross functional security initiatives.
Stay abreast of emerging security threats, vulnerabilities, and controls.