The future is what you make it.
That means changing the way we fly, fueling jets in an eco-friendly way, keeping buildings smart and safe and even making it possible to breathe on Mars.
In the role of the Senior Advanced - Cloud Application Security Architect for Forge Application Insights (a HON AI/ML Platform), you will provide expertise in security to development teams throughout all phases of the product lifecycle. The individual will report to the Product Security Leader and drive security baselines, processes, solutions, and risk reduction across the platforms and growing line of core product areas.
Drive secure product development using existing standards and practices, staying abreast of emerging threats, security practices, and technologies in the cloud
Influence decision-makers and stakeholders, improve secure coding practices, security requirements, and design
Regularly participate in PI Planning and Scrum Meetings to ensure that security is at the forefront of development and product management mind
Provide product security assessment reports to the Senior Management, Development Managers and Product Managers on a regular basis
Drive secure engagement and architecture including threat modeling, vulnerability and risk assessment, analysis of findings from penetration tests, and tools (e.g., SAST, SCA, Container vulnerability scans)
Drive incident response investigation, ensure coordination for remediation plan and execution
Scope and drive security testing of products, perform results assessments, and assist in remediation strategies with engineering
Mentor and coach engineering and security architects in secure SDLC practices, train and engage security advocates
You must have:
Bachelor's Degree
5+ years of application security architecture in public cloud domain (AWS, Azure, GCP)
5+ years of software development experience
We value:
Experience in architecting enterprise class high-volume high-performance software products
Rich software development background
Secure software development lifecycle (SSDLC) experience
Experience with AI/ML cloud technologies
Certifications in Secure Software Lifecycle or Cloud Security demonstrating deep practical knowledge, such as CSSLP or CCSP
Azure, AWS or GCP Security or Solutions Architecture certifications
Understanding of the challenges operating trusted infrastructure in public cloud environments
Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among project partners
Understanding of Agile software development practices
In-depth knowledge and understanding of OWASP Top 10 and CWE Top 25 with experience in assessment and providing remediation strategies
Experiences with DevOps (CI/CD) & SDLC
Master’s degree
Additional Information - JOB ID: req457821
- Category: Engineering
- Location: HW Camp II,Bldgs 9A&9B,Plot C2,RMZ Ecoworld,Varturhobli,Sarjapur Marathahalli Outer Ring Road,Bangalore,KARNATAKA,560103,India
- Exempt
