Security Architect (Poland remote)

at  Nord Security

CORE REQUIREMENTS

• Ability to enhance and propose software design descriptions with a focus on security
• Sense of ownership with strong problem-solving and investigation skills;
• Excellent communication and presenting skills; able to concisely communicate security risks to both technical and business audiences both verbally and in writing
• Ability to quickly assimilate new technologies and tools;
• Bonus points for community contributions like public CVEs, bug bounty recognition, open-source tools, blogs, etc.
• In-depth knowledge of one or more of the following topics:
• Cryptography
• Network Security (Design of P2P, Firewalls, IPv6)
• Security of Mobile / Desktop Application
• Open Authorization and OpenID Connect (OIDC)
• Secure Backend Architecture (Zero trust environments, KMS, IAM)
• Web Security (API Security, Web Application Security, Securing Browser Extension)

• Drive the decision-making process for technical designs by providing security recommendations and risk mitigation strategies
• Define general and feature-specific security requirements
• Conduct threat model sessions and perform risk assessments of any product change that may impact security
• Consult developers on security architecture and cryptography-related concerns
• Research new security concepts and translate them into actionable design descriptionsMaintain constant communication with stakeholders and push the security agenda
• Design and deliver training for security engineering awareness and adoption
• Actively look for internal security gaps within the product or organization