Senior Security Architect
Italy
ION Group
ION financial software improves decision making, simplifies complicated processes and empowers you by providing the right tools.Your skills, experience, and qualificationsSkills• Threat Modeling.• Authentication/authorization standards and implementations• Application of encryption at rest and in transit• Certificates/secrets standards and implementations • Managing security in public clouds ( AWS, Azure, GCP), with at least 3 years specific experience in either AWS or Azure.• Secure microservices architectures in a cloud-native environment.• Strong understanding of networking.• Knowledge of different deployment models (Container, Serverless, Cloud, PaaS, IaaS …).• Ability to work with diverse, remote, and distributed teams across multiple regions and time zones.• Ability to do research autonomously to always be ahead of any security threat.• SSDLC practices in DevOps, CI/CD environment.• OWASP Top 10, SANS CWE, OpenSAMM, BSIMM, etc.• Penetration testing, vulnerability scanning• Design security monitoring tools.• Designing pipelines that make use of SCA, SAST, DAST, IAST and RASP solutions.
Qualifications• SANS/SEC-540: Cloud Security and DevSecOps Automation• Systems Security Certified Practitioner (SSCP)• Certified Information Systems Security Professional (CISSP)• Certified Authorization Professional (CAP)• Certified Secure Software Lifecycle Professional (CSSLP)• HealthCare Information Security and Privacy Practitioner (HCISPP)
Experience• Multi-year experience in Threat Modeling.• A proven track record as architect and consultant, capable of working directly with teams, embedded in the delivery model.• Experience with Kubernetes, Openshift, Service Mesh.• Experience with clouds (AWS, Azure, GCP)• Experience with getting or maintaining certified standards (i.e. ISO 27001, PCI DSS, MIL-SPEC)
Contract Type• Full-time, permanent contract.
Important notes (Italy)According to the Italian Law (L.68/99) Please note that candidates from the disability list will be given priority.Due to the high volume of applications, only those candidates that meet the required criteria for selection will be contacted.If you’re from a non-EU country, you must have a valid EU visa or work permit.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Automation AWS Azure BSIMM CI/CD CISSP Cloud Compliance CSSLP DAST DevOps DevSecOps Encryption GCP IaaS IAST ISO 27001 Kubernetes Microservices Monitoring OWASP PaaS PCI DSS Pentesting Privacy Red team SANS SAST SDLC SSCP SSDLC Strategy Vulnerabilities
Perks/benefits: Career development Flex hours Startup environment
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.