Senior Software Security Architect

We are searching for a Senior Software Security Architect / Senior Application Security Architect for a marketing leading and award-winning technology and data driven business.

The position is offered on a remote basis.

The role is hands-on and very software engineering focused - you will be responsible for establishing a secure SDLC and 'Secure by Design' approach/practice to be used by all of the Architecture and Software development teams.

The role will involve:

• Developing, implementing, and maintaining application security architecture across the organisation.
• Ensuring our systems are designed with objectives like speed, scalability, robustness,
  zero-trust, automation and supportability at the core.
• Collaborating with the Architecture and Engineering Team to ensure security is an integral part of all development and deployment processes.
• Providing expert software security advice (design, coding, testing) to the Software Engineering Community, to InfoSec, DevOps and other teams.
• Defining and delivering secure software development of information to the software engineering teams.
• Escalating issues appropriately, to various teams and levels of authority inside the organisation.
• Interfacing with customers to ensure that security obligations are managed and met appropriately.

About You

To be considered for this Senior Software Security Architect / Senior Application Security Architect role you will be able to demonstrate a successful track record and in-depth practical experience of the Software Development Life Cycle (SDLC) - you will have an excellent understanding of Software Development and Software Testing and you will have a strong understanding of multiple programming languages, such as, C++, C, C#, .NET Core, Java, JavaScript, Node.js, Angular, React or similar.

You will also have/be:

• Experience in creating application security strategies, standards, best practices, and providing direct input to project teams and business stakeholders is essential.
• Experience working with security issues in software architecture, software development, e.g. static and/or dynamic code analysis and tools, software dependency check, OWASP Top10 testing, application threat modelling.
• In-depth experience working in an Agile software development environment, with classic applications as well as microservices, using modern code processing and continuous integration and delivery tools (e.g. GitHub, Jenkins, Bamboo).
• Good expertise in taking security policy statements and translating them into actual, implementable, security controls and techniques that can make our software applications demonstrably more secure and robust.
• Good understanding of common information security management standards, frameworks, and laws / regulations: e.g. ISO 27001, NIST, GDPR.
• Experience of open-source security tools and how they could be used in an enterprise.
• Experience of securing Azure cloud workloads and environments.

Please note, to be considered for this role you MUST have the Right to Work in the UK without company sponsorship and you MUST be based in the UK.

The Senior Software Security Architect / Senior Application Security Architect position is offered with an excellent range of benefits including: -

• Generous Holiday Allowance - 25 days' holiday plus bank holidays, with the option of adding up to five (5) additional unpaid leave days per year.
• Annual Lifestyle Allowance to spend on an activity of your choice.
• Pension Scheme: Matched up to 6% for the first 3 years, and up to 10% thereafter.
• Private Health Insurance.
• Group Income Protection Scheme.
• Charitable Fundraising.
• Cycle to Work and Gym Flex Schemes.
• Internal Coaching and Mentoring.
• Training and Career Progression.
• Family-Friendly Policies.
• Remote Working.

KEYWORDS

Senior Software Security Architect, Senior Application Security Architect, SDLC, Secure by Design, Architecture, Software Development, Engineering, DevOps, InfoSec, Security, Security Strategy, Best Practice, Programming, Code, C++, C#, C, .NET Core, Java, JavaScript, Node.js, Angular, React, OWASP, Agile, Application Threat Modelling, Security Policy, Security Controls, ISO 27001, NIST, GDPR, Cloud, Azure.

Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position.

No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010.

Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.