Application Security Architect Riga, Latvia

What You’ll Do

• Lead and coordinate Security Audits across the software development lifecycle: from Architecture, Process, Risk to Testing
• Establish secure software development lifecycle (SSDLC) programs
• Support software development teams in secure development methodologies, tools, and processes
• Train Software Development teams in the areas of secure development
• Building Secure Architecture and Design for the projects
• Communicate with customers and teams, be able to convey the message about importance of Secure Software development Life Cycle, the ways of establishing it
• Cooperate with all sub-teams: BAs, Developers, Qas; build consistent understanding of Security Requirements, main Threats, Mitigations implemented
• Be able to communicate and coordinate work with other Security Teams – Cloud Security Engineers, Infrastructure Security Engineers or Penetration Testers

What You Have

• Software Development or Security-focused university degree OR equivalent experience
• Motivation to develop and grow in the field of Security
• Familiarity in one or more Security Development methodologies (e.g. Microsoft SDL, OWASP OpenSAMM, BSIMM etc)
• Familiarity with Threat Modeling, hands-on experience with one or more Threat Modeling Tools
• Understanding of main Security-related activities in development such as Security Requirements gathering, Risk Assessment, Security Code Review
• Understanding of main security concepts and principles
• Understanding of main areas of protection and levels of defense

Nice to have

• Familiarity with the one or more cybersecurity tools in the following categories: Static Code Analysis, Penetration Testing, Intrusion Detection/ Prevention
• Knowledge of Security Features and Mechanisms provided by at least one OS and development platform/technologies
• Understanding of mitigation mechanisms for every type of threats
• Familiarity with existing security standards and regulations experience of requirements implementation
• Understanding of basic principles of infrastructure security and penetration testing
• Experience with cloud security controls and policies
• Relevant certifications such as CISSP, CCSP, SANS GIAC or similar qualifications are a considered an advantage

We offer

• Flexible working schedule and opportunity to work remotely from any place in Latvia
• Community of 52,000+ industry’s top professionals united for exchanging knowledge with experts from anywhere in the world
• Outstanding career development opportunities with a transparent career path and a roadmap to accelerate your journey
• Travel and relocation opportunities within our offices in 35+ countries and relocation support for you and your family
• Wide range of professional training, workshops, and mentoring programs
• Learning resources and financial support for completing certification programs
• Corporate health insurance and the possibility of buying private health insurance for the family at a Corporate price
• Competitive salary plus annual bonuses for showing outstanding results
• Additional vacation days as a benefit from the Company