Remoote.app

Work from anywhere. Start here.

Free resume builderCompaniesLog in
Apply

Architecte de Sécurité

Posted about 2 months agoViewed

View full description

💎 Seniority level: Senior, 5+ years

📍 Location: Canada

🔍 Industry: Software Development

🏢 Company: Tecsys Inc.

🗣️ Languages: English

⏳ Experience: 5+ years

🪄 Skills: AWSDockerSQLCloud ComputingCybersecurityFull Stack DevelopmentJavaJava J2EEJava RmiKubernetesSoftware ArchitectureSpring BootAlgorithmsApache KafkaData StructuresJava Enterprise EditionJava SpringREST APISeleniumCI/CDDevOpsMicroservicesComplianceJSONData modelingScriptingSoftware EngineeringSaaS

Requirements:
  • 5+ years experience in SaaS architecture and implementation, with a strong focus on security and encryption.
  • In-depth knowledge of encryption techniques, including symmetric and asymmetric encryption methods, PKI, TLS / SSL, HSM, FIPS 140-2/ 140-3 standards, and data encryption at rest and in transit.
  • In-depth knowledge of SOC2, NIST and cloud infrastructure security.
  • Strong understanding of cloud-native services and application security.
  • Experience in threat modeling and implementing defense-in-depth strategies / controls.
  • Extensive knowledge and experience with cloud-native technologies and patterns, including micro services architecture, containerization (Docker), container orchestration (Kubernetes), and serverless computing (AWS Lambda).
  • Excellent written and verbal communication skills in English are essential to support effective collaboration with customers, suppliers, business partners and colleagues outside of the province of Quebec.
Responsibilities:
  • Work with IT, cloud operations, and development teams to design and build robust security architectures in AWS environments, ensuring compliance with SOC2 and FedRAMP.
  • Design and implement secure encryption strategies, ensuring the protection of sensitive data at rest and in transit within AWS environments
  • Integrate security best practices into the infrastructure design and software development lifecycle
  • Define and design integrated continuous compliance capabilities to effectively manage security audits
  • Conduct threat modeling exercises
  • Design and support the implementation of a defense-in-depth strategy
  • Collaborate with the Governance, Risk, and Compliance officer to ensure designs meet FedRAMP and SOC2 controls
  • Act as a subject matter expert on the security of our cloud infrastructure, providing guidance and recommendations to technology leaders
  • Manage and facilitate clear communication between cross-functional teams and stakeholders
  • Provide technical guidance and best practices to development teams on secure coding, encryption, and data protection
  • Stay current with the latest security trends, tools, and technologies
  • Lead continuous improvement initiatives to enhance the security of our cloud environments
Apply