Sr. Application Security Architect

San Francisco, CA

Applications have closed

CyberCube

Cybercube is the leading cyber risk analytics provider for the insurance industry, translating cyber risk into financial impact across businesses, markets, and society as a whole.

View all jobs at CyberCube

We are looking for a Sr. Application Security Architect, who will be responsible for aligning our Software Development Life Cycle with security best practices, conducting security assessments on code changes and in general maturing our application security framework, processes and toolsets.

Responsibilities

  • Own the application security capability
  • Drive the technical direction and roadmap of the application security program
  • Lead application security reviews and threat modeling, including code reviews and dynamic testing
  • Collaborate with development teams to prepare application security code fixes
  • Implement and scale automated security testing to validate that secure coding best practices are being used
  • Enable secure development practices through training

Skills

  • Familiarity with common security libraries, security controls, and common security flaws
  • Development or scripting experience and skills. Node.js and Java are preferred
  • Experience with OWASP, static/dynamic analysis, and common security tools
  • Experience identifying security issues through code review
  • Experience working with developers
  • Familiarity with securing applications built on cloud computing environments (AWS preferred)
  • Understanding of authorization frameworks (OAuth and JWT)
  • Experience working with source control (git, github, bitbucket etc.)
  • Experience integrating application security functions into CI/CD processes

Why You'll Love It Here

  • Play an instrumental role in reshaping one of the oldest industries in the world
  • Competitive salary and unlimited PTO
  • Meaningful early stage equity
  • Generous healthcare benefits with medical, dental and vision coverage
  • Monthly catered lunches and happy hours
  • Company paid learning and development assistance
  • Flexible working hours and ability to work remotely
  • Opportunity to participate in a secondment program 
  • Dependant care assistance plan 
  • Company supported mentorship program
  • Grow in a collaborative, respectful, and empathetic culture
#LI-Remote #LI-Hybrid

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  6  1  0

Tags: Application security AWS Bitbucket CI/CD Cloud GitHub Java Node.js OWASP Scripting SDLC Security assessment

Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Flex vacation Health care Startup environment Team events Unlimited paid time off

Regions: Remote/Anywhere North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.