Description:

The Security Architect will drive the decision-making process for technical designs by providing security recommendations and risk mitigation strategies.
This role involves defining general and feature-specific security requirements.
The Security Architect will conduct threat model sessions and perform risk assessments of any product change that may impact security.
The position requires consulting developers on security architecture and cryptography-related concerns.
The individual will research new security concepts and translate them into actionable design descriptions.
Maintaining constant communication with stakeholders and pushing the security agenda is essential.
The Security Architect will design and deliver training for security engineering awareness and adoption.
Actively looking for internal security gaps within the product or organization is a key responsibility.

Requirements:

The candidate must have the ability to enhance and propose software design descriptions with a focus on security.
A sense of ownership with strong problem-solving and investigation skills is required.
Excellent communication and presenting skills are necessary; the candidate must be able to concisely communicate security risks to both technical and business audiences both verbally and in writing.
The ability to quickly assimilate new technologies and tools is essential.
Bonus points will be awarded for community contributions like public CVEs, bug bounty recognition, open-source tools, blogs, etc.
In-depth knowledge of one or more of the following topics is required: Cryptography, Network Security (Design of P2P, Firewalls, IPv6), Security of Mobile/Desktop Applications, Open Authorization and OpenID Connect (OIDC), Secure Backend Architecture (Zero trust environments, KMS, IAM), and Web Security (API Security, Web Application Security, Securing Browser Extension).