Application Security Architect

Job ID: 95623
Date: December 10, 2021
Category: Information Technology
Job Function: IT2
Business: CDKGlobal
Location: Austin, TX | San Jose, CA | Hoffman Estates, IL

POSITION SUMMARY:
The Application Security Architect will be instrumental in defining application and product security requirements both operationally and strategically. The Application Security Architect will partner with both the CDK Software Engineering and Product Management organizations to build security by design in to CDK products and services during the Software Development Lifecycle and while existing products are operational.
As the Application Security Architect, one will be responsible for, however not limited to, the following:
  • Collaborate with both the CDK Software Engineering and Product Management organizations to build security by design in to CDK products and services during the Software Development Lifecycle and while existing products are operational
  • Work closely with the development teams across CDK to help them to understand the risks associated with application vulnerabilities and to guide them in the correct ways to remediate those risks
  • Involve in early-stage product development and make recommendations to the product teams about how applications should be architected to be secure by design from the outset
  • Consult with development teams about technical remediations and advise and promote the importance of Security and Risk reductions to the business and product owners
  • Able to work closely with fellow IT professional in planning, employing, and monitoring security solutions
REQUIRED QUALIFICATIONS:
  • 4+ years experience working in and/or leading an application software security function
  • 7+ working with both cloud –based and on-premise technology software products and applications
  • 3+ years experience in securing cloud-based applications
  • Must be comfortable working cross-functionally within a diverse global organization, to influence and build productive partnerships
  • Knowledge and understanding of microservices architectures
  • Advanced working knowledge of technology to control and safeguard the collection, organization, structure, processing, and delivery of data
  • Working knowledge of configuration and adaptation, deployment, design patterns, risk management and scalability
  • Must have an in-depth knowledge across of a broad spectrum of IT services and solution technologies
  • Strong knowledge on application security vulnerabilities OWASP top 10, SANS top 25 etc. and experience with Static Application Security Testing, Dynamic Application Security Testing, and Software Composition Analysis tools.
  • Thorough understanding of SDLC, as well software security maturity models, such as Building Security In Maturity Model (BSIMM) or OWASP Software Assurance Maturity Model (SAMM)
  • Strong knowledge of enterprise architecture concepts and tools
  • Experience in any penetration testing activities against public and private infrastructure and applications would be a bonus
  • Cloud Architecture and how applications/data can be managed and secured in the cloud as well as integration patterns to support hybrid implementation patterns
  • Demonstrated practice of keeping current with new and emerging tools and technologies relevant to Enterprise Architecture
PREFERRED QUALIFICATIONS:
  • Experience with securing Docker Containers

At CDK, we believe inclusion and diversity are essential in inspiring meaningful connections to our people, customers and communities. We are open, curious and encourage different views, so that everyone can be their best selves and make an impact.

CDK is an Equal Opportunity Employer committed to creating an inclusive workforce where everyone is valued. Qualified applicants will receive consideration for employment without regard to race, color, creed, ancestry, national origin, gender, sexual orientation, gender identity, gender expression, marital status, creed or religion, age, disability (including pregnancy), results of genetic testing, service in the military, veteran status or any other category protected by law.

Applicants for employment in the US must be authorized to work in the US. CDK may offer employer visa sponsorship to applicants.

More Information

Apply for this job

Leave your thoughts

Share this job