Enterprise SW Arch and Eng. Principal

Hi,

• We are a team of highly skilled Product Security engineers that specialize in security research, penetration testing, and creative tool development focusing on data security, systems hardening, DevSecOps, penetration testing, threat and vulnerability management and security intelligence across network, infrastructure, tools, platforms, and product layers.
• We evaluate a broad range of technologies including distributed processing, virtualized environments, and isolation of unsecure code.
• This person will ensure our developers have all possible solutions and knowledge to create and deliver more secure applications.

• Architect, design and implement authentication solutions involving login and password pages, multi-factor authentication, federated single sign on, Captcha integration and password-less authentication solutions.
• Build, deploy and maintain a High Availability and Disaster Recovery ready environment of high performing LDAP directory.
• Design and maintain LDAP schema and ACL based security model supporting authentication, authorization, and user lookup API needs.
• Build authentication solutions for APIs and mobile applications.
• Experience in hardening IAM platforms to industry standards (IAM tools PING / OKTA ).
• Stay abreast with solutions in the market, recommend improvements and solutions.
• Assists with the documentation and maintenance of designs for security systems.
• Develops scripts and code for a feature and module.
• Reviewing current system security measures and recommending and architecting enhancements.
• Developing project timelines for ongoing system upgrades.
• Assist in breach analysis and security drills.
• Working with Info Sec team to promptly respond to all security incidents and providing thorough post-event analyses.
• Work closely with CTO Office, product development, product engineering and Info Sec on various architectural and design aspects of product security.
• Evaluate application security tools for internal consumption Prototype new automation and tooling to improve our vulnerability detection and prevention capabilities.
• Assist with incident response when a security event occurs.
• Maintain strong knowledge of ongoing security threats, remediation, and operational standard methodologies.
• Guide the Engineering organization's security and privacy initiatives by leading design reviews and threat modeling sessions.
• Nurture a culture whereby security considerations are integral to product decisions and implementations.

• BS in computer science or equivalent with 3+ years or MS in computer science or equivalent with 1+ years of hands-on professional experience.
• Solid understanding of application authentication and authorization.
• Ability to interact with a broad cross-section of personnel to explain and enforce security measures.
• Experience in performing software threat analysis, security analysis and risk analysis.
• Experience with multiple architecture styles including SOA, API-first, and micro-services architectures.
• Experience in architecting and building large scale systems using scale-out architecture that require high availability, performance, high scalability, and multi-tenancy.
• Deep expertise in on-premises and cloud based IAM products that deliver SSO, federation, authentication, MFA, and password-less features.
• Deep expertise in on-premises and cloud-based LDAP products.
• Hands on experience to build and deploy the HA and DR environments of LDAP directories in multi-master mode.
• Hands on experience in operationally maintaining an LDAP directory comprised of Multi-Million users.
• Deep knowledge of industry standards like OAuth, OpenID Connect, SAML, SCIM, FIDO and other emerging trends.
• Prior architecture experience to build a API security solution focusing on authentication, audit and logging, request/response manipulation and redaction and OWASP attacks based on APIs. Will be a plus.
• Any security certification will be taken as a plus.
• Experience with cloud Successful candidate will be a talent multiplier who gets the team around them to excel.
• Be persistent, creative, and driven to get results relentlessly.
• Exhibit a strong backbone to challenge the status quo when needed.
• Exhibit a high level of curiosity, keeping abreast of the latest trends & technologies, liking the research, and finding new vulnerabilities.
• Show pride of ownership and strive for excellence in everything undertaken.
• Be energized by a diverse and constantly evolving environment.
• Enjoy opportunities to learn new skills.