Job Searchi - jobSearchi.com

Job Details

ID #45810667
State Massachusetts
City Newton
Job type Permanent
Salary USD TBD TBD
Source IT Avalon
Showed 2022-09-19
Date 2022-09-16
Deadline 2022-11-14
Category Et cetera
Create resume

Application Security Architect

Massachusetts, Newton, 02458 Newton USA

Vacancy expired!

Job Description

This position will provide you with a unique opportunity to work as an Application Security Architect within the Enterprise Architecture team. This team is responsible for Enterprise architecture, solution design, Integration, and Interoperability needs. You will collaborate and work closely with cross functional areas of business, technical teams across data, UI, Application security protocols and Infrastructure. The ideal candidate will possess the knowledge and experience to develop and participate in the implementation of all application security. The Application Security Architect will have overall accountability to monitor, guide security implementation and continually improve our application security. The successful candidate will participate in the guidance, design, implementation and documentation of our applications security and hardening. He or she will be able to operate effectively collaborating with multiple technology and business teams both internal and external. Architecture Responsibilities & Duties
  • Owning critical aspects of our application security program including our application threat modeling, vulnerability management and application development and maintenance processes as it relates to security.
  • Conducting ongoing dynamic application and static application security testing, constructing, and maintaining threat models and participating in the Architectural Review Board (ARB) architecture reviews.
  • Integrating secure software development practices and automation in our day-to-day operations in close collaboration with our engineering and development teams in support of our agile practices.
  • Work with our engineering teams, developers, product management and customer experience teams to prioritize, design and implement application security controls.
  • Continually evolving application security strategy in response to emerging threats and to produce a secure product for our customers.
Supporting the performance of our application security accreditations. Including, but not limited to, Quarterly Intrusion and Penetration testing and scanning. Deep knowledge and hands-on experience with Application security standards and implementation (SAML, LDAP, OAuth 2.0/JWT, OpenID, ClientID/Secret, 2-way SSL).
  • Develop and maintain a security architecture process and guidelines that enable the enterprise to develop and implement application security solutions and capabilities that are clearly aligned with business, technology, and threat drivers
  • Develop application security strategy plans and roadmaps based on sound enterprise architecture practices
  • Help research, define, and communicate security best practices and standards and ensure products development teams understand them
  • Improve the accessibility of security through automation, continuous integration pipelines and other means
  • Be the technical point of contact for product and development teams as it relates to security design and remediation guidance
Leadership responsibilities:
  • Provides coaching, direction and mentorship to application development leads, technical architects and oversees solution architecture aspects end to end for ongoing projects across multiple agile PODs.
  • Develop and maintain effective relationships with internal and external technical teams, peers, and subordinates as it relates to security.
  • Facilitates learning culture, brings the hands on approach to architecture, possess strong influencing, communication skills and able to present architecture to a wide audiences in the enterprise technology area.
    • Required Qualifications & Experience 5+ Years experience in application security and hardening. 10+ Years experience in application design, development, and maintenance. Bachelor's degree in Computer Science or related technical field Experience with distributed organizations, especially development teams. Excellent written and spoken skills with the ability to produce clear and concise documentation. The ability to communicate complex security solution design and concepts. Deep experience and expertise with web, thick-client and mobile application security penetration testing and tooling. Knowledge of AWS architecture, including IAM, API Gateway, Lambda, S3, RDS and DynamoDB. Experience with AWS security tools and cloud computing in hybrid environments. A track record of making security design decisions in balance with customer needs and delivery timelines. Proficiency in a programming language such as Python, Java, Java Script, with a bias towards automation.
    • Experience designing and conducting custom secure development guidance for software engineers and developers with considerations for language-specific security concerns.
    • Experience performing or assisting in network layer penetration testing.
    • Perform security architecture design reviews and threat modeling of our products (cloud and on-prem)
    • Familiarity with CI/CD and containerized application solutions including micro services.
    Nice to have: o Knowledge of the healthcare payer space with experience in application development and security protocols. o Knowledge and, or experience with Health care data, HIPAA, PHI and PII security protocols and High Trust certification. o Knowledge and experience with FHIR standards and applications

    #LI-DNP

    Vacancy expired!

    Subscribe Report job

    Related jobs

    »Security Shift Supervisor Mall
    2022-09-16
    »Director, Application Development
    2022-09-16
    »HRIS Senior Analyst, Audit/Security
    2022-09-16