Information Security Architect

Required Education and Experience

●       8 years of relevant experience and a Bachelor’s degree or equivalent professional experience

Required Skills:

●       4+ years of experience in information security

●       3+ years of experience with secure application development and testing processes

●       3+ years of experience with securing cloud technologies

Desired Skills:

●       CISSP, GPEN, GWAPT, OSCP or similar certification

●       Knowledge of and experience with commercial and open source application security tools (e.g., Burp Suite, OWASP Zap, Arachni, BlackDuck, Kali Linux, Metasploit framework, Wireshark)

●       In-depth technical knowledge of techniques, standards and security for authentication, authorization, cloud, and web-related technologies (such as browsers, web applications, APIs,services, architectures etc.)

●       Knowledge and experience in application technology security testing, including white box, black box, and code review

●       Experience with automation scripting and automated testing tools

●       Working knowledge of a variety of programming languages, with an emphasis on Go, Python, JavaScript and the ability to write code independently in select languages

●       Experience with the application of security frameworks and regulatory standards such as ISO, NIST, OWASP, GDPR...etc

●       Able to articulate, plan, implement and manage software security best practices

●       Possesses an insatiable hunger to understand limits, possibilities, opportunities, and reasons

●       Is direct and indirect by turns; derives glee and satisfaction from relevant discovery, but is always ready to meet colleagues where they are to accompany them on their journey. Enjoys both order and chaos

●       Situational fluency, ability to influence and motivate others, and perseverance to bridge challenging business and technical situations

●       Passionate appetite for on-going challenges and interest in continuously learning