Remote Application Security Architect - Remote

Description:

• The Application Security Architect ensures that company applications and services are secured and implemented with the best security practices.
• The main goal of the AppSec Architect is to protect applications from security attacks by developing, inserting, and testing security components that enhance application security.
• The ideal candidate will support application security reviews, threat modeling, and perform application security vulnerability management.
• Responsibilities include performing secure program testing, reviewing, and assessing to identify potential flaws in codes and mitigate vulnerabilities.
• The architect will coordinate with product, engineering, and other departments to support secure outcomes while building out the product security knowledge base.
• They will perform risk analysis whenever an application or system undergoes a major change.
• The role requires exposure to various application security testing tools and common offerings for application security testing and analysis.
• Experience with Continuous Integration/Continuous Deployment (CI/CD) processes and concepts using relevant technologies and tools is necessary.
• The architect will be responsible for designing and evaluating application security in all phases of the application life cycle.
• They will apply coding and testing standards, utilize security testing tools, and conduct code reviews.
• The role involves determining and documenting software patches or the extent of releases that would leave software vulnerable.
• The architect must be able to triage, reproduce, and recommend remediations for vulnerabilities.
• They will translate security requirements into application design elements, document software attack surfaces, conduct threat modeling, and define specific security criteria.
• The architect will identify common coding flaws and consult with engineering staff to evaluate the interface between hardware and software.
• They will develop threat models based on customer interviews and requirements and consult with customers about software system design and maintenance.
• Effective communication of security threats to non-technical stakeholders is essential.
• The architect will apply secure code documentation while improving practices and maintenance.

Requirements:

• Candidates must perform secure program testing, review, and/or assessment to identify potential flaws in codes and mitigate vulnerabilities.
• Coordination with product, engineering, and other departments to support secure outcomes is required.
• Candidates should perform risk analysis whenever an application or system undergoes a major change.
• Exposure to various application security testing tools and common offerings for application security testing and analysis is necessary.
• Experience with Continuous Integration/Continuous Deployment (CI/CD) processes and concepts using relevant technologies and tools is required.
• Candidates must be responsible for designing and evaluating application security in all phases of the application life cycle.
• They should apply coding and testing standards, utilize security testing tools, and conduct code reviews.
• The ability to determine and document software patches or the extent of releases that would leave software vulnerable is essential.
• Candidates must be able to triage, reproduce, and recommend remediations for vulnerabilities.
• Translating security requirements into application design elements and documenting software attack surfaces is required.
• Candidates should identify common coding flaws and consult with engineering staff to evaluate the interface between hardware and software.
• Developing threat models based on customer interviews and requirements is necessary.
• Effective communication of security threats to non-technical stakeholders is essential.
• Candidates must apply secure code documentation while improving practices and maintenance.

Benefits:

• The salary is commensurate with years of experience, technical expertise, and geographic location.
• The salary range for this position is $150,000 to $200,000.
• Performance bonuses are offered.
• The benefits package includes 100% paid medical, dental, and vision for the employee.
• A 401(k) plan with employer match is provided.
• The company promotes a strong culture.
• A flexible PTO policy is available.
• Flexible working arrangements are offered.
• An annual company overnight retreat is part of the benefits.