Security Architect Offline

We are looking for an IT SAAS Security engineer to support our growing company's security needs and SaaS administration. This is a hybrid role that combines technical administration and security compliance functions. You will serve as the primary Security compliance engineer for our SaaS and on-premises tools, ensuring smooth day-to-day tool security operations.



Job Description

Experience & Skills:

• Experience with SaaS administration, ideally with multiple platforms (e.g., Box, o365, Okta, EntraID, Intune, etc.).
• Familiarity with security compliance frameworks (SOC 2, ISO 27001, NIST, etc.) and responding to security questionnaires.
• Basic understanding of disaster recovery, backup systems, and incident response practices.
• Good understanding of class of risks in order to assess priorities and execution order
• Strong organizational skills and ability to manage multiple tasks with minimal supervision.

Technical Knowledge:

• Proficiency in usage monitoring / review of cloud-based SaaS applications.
• Basic understanding of on-premises server tools and network configurations.
• Knowledge of backup and DR software.

Qualifications:

• Minimum of 5 years of experience as a Security Engineer or in a similar role focused on application and infrastructure security
• Strong understanding of security principles, best practices, and frameworks (e.g., OWASP, NIST, CSA)
• Proven experience in designing and reviewing secure architectures for complex distributed systems and cloud-based platforms (Azure experience strongly preferred)
• Experience with threat modeling methodologies (e.g., STRIDE, PASTA)
• Solid understanding of Kubernetes or other container orchestration platforms and their security considerations
• Knowledge of API security best practices and common attack vectors
• Experience with data security and privacy principles
• Familiarity with security considerations specific to AI/ML systems is highly desirable
• Excellent communication, collaboration, and interpersonal skills
• Ability to explain complex security concepts to both technical and non-technical audiences.
• Relevant security certifications (e.g., CISSP, CSSLP, CCSP) are a plus.
  
  
   

Job Responsibilities

• Security Architecture and Design: Develop and maintain the overall security architecture for the AI platform, ensuring alignment with industry best practices, regulatory requirements, and our company's security policies.
• Design Reviews: Conduct thorough security reviews of system designs, architectures, and deployment plans for all components of the AI platform, including microservices, data pipelines, AI/ML models, APIs, and infrastructure-as-code.
• Threat Modeling: Lead threat modeling exercises to identify potential security vulnerabilities and risks in the platform's architecture and propose effective mitigation strategies.
• Security Standards and Guidelines: Define and document security standards, guidelines, and best practices for development, deployment, and configuration of platform components.
• Component Security Review: Evaluate the security of third-party components, libraries, and services integrated into the platform.
• Cloud Security: Ensure secure configuration and deployment of the platform within our cloud environment, adhering to cloud security best practices and leveraging native security services.
• API Security: Define and review security measures for all internal and external APIs, including authentication, authorization, input validation, and rate limiting.
• Data Security: Collaborate with data engineering teams to ensure the secure handling, storage, and processing of sensitive data, including customer intellectual property, in compliance with relevant data privacy regulations.
• AI/ML Security: Stay abreast of emerging security threats and best practices specific to AI/ML systems, including prompt injection, adversarial attacks, and model security, and incorporate these into the platform's security architecture.
• Collaboration and Guidance: Work closely with development, engineering, and infrastructure teams to provide security guidance, address security concerns, and ensure secure implementation of platform components.
• Security Documentation: Create and maintain clear and comprehensive security documentation, including architecture diagrams, design specifications, and security guidelines.
• Compliance Support: Assist with security compliance efforts by providing architectural guidance and ensuring that the platform's design meets relevant security standards and regulations.