Application Security Architect at DotModus

Scope:

DotModus, industry-specific, scalable cloud solutions and Premier Google Partner, are looking for an Application Security Architect who will work closely with the development team to build computer security programs. The primary role of the Application Security Architect is to provide support to ensure that company-wide application security needs are identified and addressed through the cost-effective application of proven control processes and technology. The Application Security Architect will define, document & maintain the application security strategy and architecture.

Responsibilities:

• Produce security architectures and low-level application security designs involving; client security requirements, structured and unstructured data protection, authentication and authorization, API G/W’s, microservice API’s and threat management.
• Influence solutions architecture development to ensure alignment with security principles and requirements.
• Identification of security architecture and design decisions and management of decisions through architecture governance processes.
• Manage cross-functional internal and external team collaboration and the promotion of security requirements across teams.
• Collaborate with IAM specialists and cloud security specialists to deliver end-to-end solutions.
• Work with technical product owners to develop technical backlogs for security engineering and internal feature team delivery.
• Development of application security patterns and technical security standards.
• Promote re-use of established security patterns.
• Develop and maintain application threat models for enumerating and manage security requirements and to enable management of security requirement delivery.

Candidate Profile:

• 10+ technical security architecture development experience.
• Deep functional experience engaging agile feature teams.
• Proactive self-starter capability of delivering with minimum supervision.
• Experience implementing solutions aligned with industry security standards.
• Experience with Big Data solutions and customer-facing web applications.
• Proven ability to deliver compliance with global data protection regulation and customer contractual requirements.
•  Ability to effectively present and communicate security threats and risks to any audience and impress upon them the mitigation techniques and strategies.
• Excellent communication, influencing and negotiating skills.
• Strong working knowledge of security concepts, frameworks, and best practices.
• A background in penetration testing is desirable.