Security Architect, VP

Summary:

The Security Architect is a leading technical contributor to maintain and enhance the software security program at Charles River Development. The security program encompasses vulnerability identification and tracking, assessment and scoring (via CVSS), vulnerability remediation management, software design review, code review, and threat modeling.

The role requires comprehensive knowledge of security attack vectors from the operating system through the application layer and persistent layer and related defensive controls for preventing, detecting, and mitigating attacks in both on-premise and public cloud scenarios.

The Security Architect will leverage security policies to help enhance procedures and best practices across the Charles River Development application stack. In addition, this role will work very closely with various teams and stakeholders to execute the security policies, procedures, and best practices.

Responsibilities:

• Lead and perform threat modeling and security architecture reviews for our products/applications.
• Collaborate with development teams to integrate security best practices into the software development lifecycle.
• Identify security risks and vulnerabilities in our applications/products.
• Work with subject matter experts to develop vulnerability remediation plans and drive implementation.
• Perform security code reviews, capable of quickly identifying common implementation pitfalls that lead to security vulnerabilities.
• Triage vulnerability findings through industry-standard threat scoring practices (CVSS).
• Develop and apply security configuration, deployment best practices, and key security controls for deployment hardening.
• Participate in security incident investigations and remediation actions.
• Deliver security awareness training to the development organization on a periodic basis.
• Keep apprised of new offensive threats and the defensive technologies to defeat or mitigate attacks.
• Monitor the software industry for vulnerabilities that could affect Charles River Development products.

Education:

• B.S. degree (or foreign education equivalent) in Computer Science, Engineering, Mathematics, Physics, or other technical course of study required. MS degree strongly preferred.

Qualifications/Experience:

• A minimum of 7+ years of progressively responsible experience as a security engineer, with at least 2+ years focused on secure SDLC required.
• Demonstrated knowledge of common vulnerabilities and corresponding remediation approaches.
• Advanced technical knowledge of techniques, standards, and state-of-the-art capabilities for identity management, authentication, authorization, Single-Sign-On, applied cryptography, and security vulnerability remediation.
• Strong working experience in security architecture assessment and threat modeling for web applications and services is required.
• Knowledge of Azure cloud and container security is preferred.
• Strong written and verbal communication skills.
• Strong analytical and problem-solving skills.
• Certifications such as CISSP, CISM, SABSA, TOGAF, or similar are a plus.