Software Architect

Job Title:

Software Architect

About Trellix:

Trellix, the trusted CISO ally, is redefining the future of cybersecurity and soulful work. Our comprehensive, GenAI-powered platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Along with an extensive partner ecosystem, we accelerate technology innovation through artificial intelligence, automation, and analytics to empower over 53,000 customers with responsibly architected security solutions.
We also recognize the importance of closing the 4-million-person cybersecurity talent gap. We aim to create a home for anyone seeking a meaningful future in cybersecurity and look for candidates across industries to join us in soulful work. More at https://www.trellix.com/.

Role Overview:

We are seeking a highly experienced and visionary Software Architect with the DevOps organization to spearhead the design and implementation of our next-generation cloud and hybrid security platforms. This role demands a deep understanding of cloud architectures, container orchestration, microservices development, and the intricacies of Endpoint Detection and Response (EDR) and Extended Detection and Response (XDR) systems. This role will be instrumental in architecting secure, scalable, and compliant solutions that form the backbone of Trellix’s cyber security offerings. The ideal candidate will possess a proven track record of designing and deploying robust security solutions across both cloud and on-premises environments, with a strong focus on meeting stringent regulatory and industry security requirements.

Responsibilities:

• Architectural Leadership in Cyber Security:

  • Define and drive the overall architectural vision and strategy for the cloud, container, and microservices & platforms, specifically tailored for cyber security solutions.

  • Provide technical leadership and mentorship to engineering, DevOps and SRE teams, ensuring adherence to security-focused architectural best practices.

  • Conduct architectural reviews and evaluations to ensure alignment with security objectives and technical requirements.

• Secure Cloud, On-Premise and Hybrid Architecture:

  • Design and implement highly secure cloud architectures on public cloud platforms such as AWS, Azure, or GCP, with a focus on protecting sensitive data and infrastructure.

  • Optimize cloud infrastructure for performance, cost-effectiveness, and security within a cyber-security context.

  • Develop and implement secure cloud migration strategies for on-premises security systems, ensuring adherence to relevant compliance standards.

  • Architect solutions that seamlessly integrate cloud and on-premises security infrastructure, with a focus on maintaining security and compliance across all environments.

  • Provide guidance on optimizing on-premise security systems for performance and security, ensuring they meet relevant compliance requirements.

• Secure Container and Microservices:

  • Architect and implement containerized security solutions using Kubernetes and other orchestration tools, with a strong emphasis on security hardening and vulnerability management.

  • Design and develop microservices architectures for security applications that are scalable, maintainable, and resilient, while meeting stringent security requirements.

  • Establish best practices for secure containerization, microservices development, and deployment within a cyber security environment.

• EDR/XDR Architecture for Advanced Threat Defense:

  • Architect comprehensive EDR and XDR solutions that integrate with existing security infrastructure, with a focus on advanced threat detection and response.

  • Design data pipelines for ingesting, processing, and analyzing security telemetry, ensuring data integrity and security for threat analysis.

  • Develop threat detection and response strategies using advanced analytics and machine learning, tailored to combat sophisticated cyber threats.

  • Design on-premise EDR and XDR solutions with security in mind, focusing on protecting critical assets.

• Security Compliance and Regulatory Adherence:

  • Ensure that all architectural designs comply with relevant security controls and compliance standards (e.g., NIST 800-53, ISO 27001, GDPR, PCI DSS) within the context of cyber security solutions.

  • Implement security best practices throughout the development lifecycle, with a focus on meeting industry-specific compliance requirements.

  • Architect, Plan and Develop next-generation CI/CD pipelines with built-in security best practices.

  • Automate SDL activities and SBOM generation, ensuring they meet security compliance requirements for cyber security products.

  • Automate OS hardening(CIS, STIG, FIPS etc), ensuring systems are configured to meet security baselines for secure and compliant deployments.

  • Evaluate and recommend new technologies to improve the product security posture and compliance

Qualifications:

• Bachelor's or Master's degree in Computer Science, Engineering, or a related field.

• Minimum 18 years of experience in software architecture and development, with a strong focus on cyber security.

• Extensive experience with cloud platforms (AWS, Azure, GCP), container orchestration (Kubernetes), and microservices architectures within a security context.

• Deep understanding of EDR and XDR concepts, technologies, and best practices for threat detection and response.

• Proven ability to design and implement scalable, secure, and resilient security solutions, with a focus on compliance.

• Strong understanding of security principles, compliance standards, and best practices within the cyber security domain.

• Excellent communication, collaboration, and leadership skills.

• Ability to work independently and as part of a team.

• Experience with on premise security deployments.

• Deep understanding of security frameworks (e.g., NIST 800-53, ISO 27001) and their application in cyber security.

• Experience with vulnerability management, incident response, and threat intelligence.

Preferred Qualifications:

• Relevant certifications (e.g., AWS Certified Security Specialty, Certified Kubernetes Security Specialist, CISSP, CISM).

• Experience with threat intelligence platforms and security automation tools.

• Experience with DevSecOps methodologies, particularly within a cyber security context.

Company Benefits and Perks:

We believe that the best solutions are developed by teams who embrace each other's unique experiences, skills, and abilities. We work hard to create a dynamic workforce where we encourage everyone to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.

• Retirement Plans

• Medical, Dental and Vision Coverage

• Paid Time Off

• Paid Parental Leave

• Support for Community Involvement

We're serious about our commitment to a workplace where everyone can thrive and contribute to our industry-leading products and customer support, which is why we prohibit discrimination and harassment based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.