Vaco is seeking an experienced Security Architect for a local client who will play a critical role in designing, implementing, and overseeing our security architecture to ensure the safety of our cloud, web, and distributed systems. The ideal candidate will have strong experience with AWS/Cloud Security, web security, authentication/authorization, and microservices, and will bring a solid background in Java development, particularly within microservices environments.
Why You'll Love This Role: Here, continuous improvement and learning are fundamental. You'll take on challenging security projects, shape a culture of security mindfulness, and play an integral role in defending valuable digital assets. This position offers a dynamic space to develop expertise, lead transformative initiatives, and make a real impact.
Core Responsibilities: - Design and implement security solutions and architecture that protect our cloud-based infrastructure, applications, and data.
- Collaborate with engineering teams to ensure secure development practices and to embed security requirements in the software development lifecycle.
- Create and maintain threat models, identifying security risks, and defining security requirements and countermeasures.
- Develop penetration test plans to validate the security of applications, infrastructure, and services (no hands-on penetration testing required).
- Advise on the implementation of Zero Trust principles and secure access protocols for distributed systems and databases.
- Assess and fortify database security, ensuring robust access controls, encryption, and data integrity.
- Collaborate with DevOps teams to establish and enforce security best practices in a microservices environment.
Experience Requirements: - AWS/Cloud Security - Demonstrated experience in securing cloud environments, with a focus on AWS.
- Web Security - In-depth understanding of securing web applications and services.
- Authentication/Authorization - Proven expertise in designing and implementing secure authentication and authorization solutions.
- Distributed Systems/Microservices - Familiarity with distributed systems or microservices architecture.
- Java Development - Strong Java programming skills, particularly within a microservices architecture.
- Threat Modeling - Proficiency in creating threat models to proactively identify potential security risks.
- Database Security - Strong knowledge of database security practices.
- Zero Trust - Experience implementing Zero Trust principles to enhance organizational security.
- Penetration Test Planning - Ability to create comprehensive penetration test plans.
- Experience creating threat models in diverse environments (preferred).
- Familiarity with modern security frameworks and industry standards (e.g., NIST, ISO 27001) (preferred).
- Strong analytical skills and attention to detail.
Take the opportunity to lead security innovations, making a difference in a critical security role with Vaco's client. Apply today to start making an impact.
Determining compensation for this role (and others) at Vaco/Highspring depends upon a wide array of factors including but not limited to the individual's skill sets, experience and training, licensure and certifications, office location and other geographic considerations, as well as other business and organizational needs. With that said, as required by local law in geographies that require salary range disclosure, Vaco/Highspring notes the salary range for the role is noted in this job posting. The individual may also be eligible for discretionary bonuses, and can participate in medical, dental, and vision benefits as well as the company's 401(k) retirement plan.