Senior Security Architect

ION Group – Information Security & Compliance /

Full-time /

On-site

We’re visionary innovators providing trading and workflow automation solutions, high-value analytics, and strategic consulting to corporations, financial institutions, central banks, and governments. More than 40% of the world’s largest companies use our solutions. We have achieved tremendous growth by bringing together some of the most successful financial technology companies globally.

At ION, we offer careers that provide opportunities to invent, design, collaborate, build, transform businesses, and empower people worldwide to do more, faster, and better. This is your chance to do your best work.

1. Establish policies and procedures that promote secure development/cloud principles.
2. Enable security automation through tools to reduce vulnerabilities and human errors.
3. Automate audit evidence collection throughout the SDLC for compliance reporting.
4. Monitor security metrics to improve and stay ahead of threats.
5. Engage with teams to ensure cloud architecture meets top security standards.
6. Create secure cloud architecture supported by robust infrastructure and efficient operating models.
7. Conduct post-mortem incident analyses.
8. Review security compliance of deployment, maintenance, monitoring, and management processes.
9. Collaborate with software architects to integrate security in software design.
10. Evaluate the latest security applications, hardware, and practices.
11. Provide security training and cultivate a security-aware culture.
12. Assist product owners in refining security requirements to align with customer strategies and enhance sales.
13. Perform other duties as the role expands.

• Authentication/authorization standards and implementations
• Encryption at rest and in transit
• Certificates/secrets management
• Security management in public clouds (AWS, Azure, GCP) with at least 3 years of experience in either AWS or Azure
• Design of secure microservices in a cloud-native environment
• Strong networking knowledge
• Experience working with remote, diverse, and distributed teams
• Autonomous research skills to anticipate security threats
• SSDLC practices in DevOps, CI/CD environments
• Penetration testing and vulnerability scanning
• Design of security monitoring tools
• Development of pipelines utilizing SCA, SAST, DAST, IAST, and RASP solutions

• SANS/SEC-540: Cloud Security and DevSecOps Automation
• Systems Security Certified Practitioner (SSCP)
• Certified Information Systems Security Professional (CISSP)
• Certified Authorization Professional (CAP)
• Certified Secure Software Lifecycle Professional (CSSLP)
• HealthCare Information Security and Privacy Practitioner (HCISPP)

• Multi-year experience in Threat Modeling
• Proven track record as an architect and consultant, working directly with teams in delivery models
• Experience with Kubernetes, OpenShift, Service Mesh
• Experience with cloud platforms (AWS, Azure, GCP)
• Experience obtaining or maintaining standards certifications (e.g., ISO 27001, PCI DSS, MIL-SPEC)

Full-time, On-site

• Priority will be given to candidates from the disability list as per Italian Law (L.68/99).
• Due to high application volume, only candidates meeting the criteria will be contacted.
• Non-EU candidates must have a valid EU visa or work permit.