Application Architect II

---

Job description

Daily Responsibilities:

Provide technical leadership and consultation for infrastructure architects and engineers to ensure the secure deployment of technology.

As part of a team, ensure the adoption of security architecture and engineering initiatives in order to effectively and securely support the organization in meeting specific business technology needs.

Drive consideration of cybersecurity tools and datasets to enhance detective and preventative control sets.

Understand technical security issues and the implications to businesses and be able to communicate them to management and other business leaders.

Understand emerging security technologies and determine the appropriate use within business applications.

Maintain and enforce cybersecurity policies and secure design documentation.

Execute and improve on Security architecture review process and ensure compliance for all business initiatives.

Architect global programs that deploy strong security patterns and controls across applications and computing environments, while addressing security, business resiliency, privacy and compliance frameworks

Identify security vulnerabilities and guide developers and engineers in addressing these issues

Improve architectural adoption through automation and efficiently use security tools to solve challenges at scale.

Validate reference architectures for security best practices and recommend changes to enhance security and reduce risk, where applicable

Collaborate with our corporate functions including Internal Audit, Legal and Compliance, Privacy, and Sourcing to ensure that maintains a strong cybersecurity posture.

Technology requirements:

Security certifications are required. (CISSP, CISM, CISA, SANS, Security+, etc.)

Degree or certifications required:

Bachelor's Degree in Computer Science, Engineering, or other related discipline or 6+ years of previous technical experience, specifically security architecture experience.

Years experience:

6+

Required background/ Skillsets:

Exceptional verbal and written communication skills, specifically the ability to communicate within the context of the intended audience, whether that be senior executives or highly technical engineering resources.

Detailed understanding of the threats faced by direct to consumer and digital platform organizations.

Working knowledge of at least one programming language (Python, Go etc.)

Proven hands-on experience securing cloud infrastructure.

Proven hands-on experience securing global hybrid architectures from both a compute and network infrastructure perspective.

Proven hands-on experience securing operating systems (Microsoft, Linux, MacOS etc.)

Proven hands-on experience with application security topics such as the OWASP top 10 and technical remediations required

Thorough understanding of Network and Compute architectures and, specifically the security aspects thereof.

Thorough understanding of compliance and regulatory frameworks and how they affect architecture designs and reviews

EEO Employer

LanceSoft is a certified Minority Business Enterprise (MBE) and an equal opportunity employer. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws.

This policy applies to all employment practices within our organization, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship. LanceSoft makes hiring decisions based solely on qualifications, merit, and business needs at the time.

<!– job description page –>