Security Architect

We’ve signed up to an ambitious journey. Join us!

As Arrive, we guide customers and communities towards brighter futures and more livable cities. Our people and our values help us be at our best for our customers and the cities and communities we serve. As a global team, we are transforming urban mobility. Let’s grow better, together.

We are looking for a Security Architect to be responsible for the security design, review, testing, and implementation of security capabilities within Arrive products, across the group.

The Security Architect\'s responsibilities include reviewing our current security measures, identifying areas of strength and weakness, recommending enhancements, assisting with compliance activities, assisting in the integration of security tests and tooling along the software delivery chain, and responding promptly to security incidents.

To be a successful Security Architect, you should be experienced in application security and risk assessment, with a strong understanding of security protocols, authentication and authorization patterns, of on-prem, cloud and hybrid infrastructure security and application security, both build time and runtime. You should also possess strong interpersonal and communication skills.

• A thorough understanding of the organization\'s technology and IT systems.
• Translate business requirements and use cases into security controls and standards.
• Plan, research, and design secure application architectures and CI/CD pipelines.
• Develop, review, and collaborate on the configuration of cloud account configuration, network isolation, security groups, access policies, network policies, VPNs, and overall compute platform security, including both host-based and container-based workloads.
• Integrate identity management systems, digital certificates, and secrets management with application workloads.
• Assess security capabilities, evaluate tools and approaches and make recommendations as part of the application security roadmap that is fed into team backlogs.
• Help teams to do their threat modeling, review vulnerabilities and suggest strategies and tactics for remediation.
• Validate security implementations and participate in remediation and risk acceptance efforts.
• Define, track and report on security metrics to demonstrate security maturity and program effectiveness.
• Establish disaster recovery procedures and conduct security breach drills.
• Respond quickly and effectively to all security incidents and provide post-event analyses.
• Guide the overall security community, cultivating a sense of security awareness, and arranging for continuous education.
• Participate in Compliance Frameworks and audits in the Engineering organisation (ISO 27001, GDPR, SOC2, ISAE 3402, TX RAMP…)
• Remain up to date with the latest trends, standards, and products.

• A bachelor\'s or associate\'s degree in IT, computer science, or equal experience.
• 5-10 years or more of experience in application development and security.
• Experience with AWS, including EKS, multi-account setups, GuardDuty, KMS, Config, SSM, CloudFront, Firewall Manager, Shield, Network Firewall, WAF, IAM, CloudTrail, Security Hub, Secrets Manager, Inspector, Global Accelerator, ELB, EC2, Athena.
• Experience with designing and implementing security for APIs (e.g., authentication, authorisation, rate limiting, API gateways).
• Experience with data centres and hybrid environments.
• Experience with container security platforms, orchestration, and runtime protection.
• A strong working knowledge of current application and infrastructure risks, secure application design, and operating systems including both Windows and Linux experience.
• Excellent teaching, problem-solving, communication, and interpersonal skills.
• Experience integrating security into DevOps pipelines and fostering a DevSecOps culture.
• Knowledge of Java, Kotlin, JavaScript, NodeJS, Go, Swift, Python, bash, Ruby, C# and SQL.
• Knowledge of data encryption, data loss prevention (DLP), and data privacy regulations.
• Knowledge of security testing tools (SAST, DAST, CNAPP) integration and implementation.
• Knowledge on securing serverless functions and platforms would be a bonus.
• Knowledge on security aspects of hardware would be a bonus.

Arrive, including brands like EasyPark, Flowbird, RingGo, ParkMobile, YourParkingSpace and Parkopedia, is a leading global mobility platform. Present in over 90 countries and 20,000 cities, the company helps people and decision-makers make smarter decisions about urban mobility and ease the experience of travel worldwide. Arrive delivers a unique combination of the core ingredients to make cities more livable, from smart payments and optimized car parks to data-driven traffic reduction and support for reinvestment in public transport and green space. It’s about more than function, it’s about saving time and simplifying the experience of travel for everyone. Travel is more than a journey, it’s how you Arrive.