Experienced IT Security Architect DevSecOps & Compliance Expert for Remote Work Opportunity
Introduction to Workwarp and Our Mission
At Workwarp, we are pioneers in the digital landscape, dedicated to transforming the way organizations approach technology and security. Our mission is to empower businesses and institutions with cutting-edge solutions that not only protect their assets but also foster a culture of innovation and compliance. As we continue to grow and expand our services, we are seeking an exceptional IT Security Architect to join our team. This is a unique opportunity for a skilled professional to make a significant impact in the field of IT security, DevSecOps, and compliance, working remotely with a dynamic and forward-thinking company.
Role Overview
We are looking for an IT Security Architect who is passionate about security, compliance, and the integration of DevSecOps practices into our workflows. The ideal candidate will have a strong understanding of security principles, including secure coding practices, vulnerability management, threat modeling, and risk assessment. Experience with containerization technologies such as Docker and container orchestration tools like Kubernetes (with a preference for Redhat OpenShift) is essential. The ability to secure containerized environments and integrate security into container workflows is crucial for this role.
Key Responsibilities
- Design and Implement Security Solutions: Develop and implement comprehensive security solutions that align with industry best practices and regulatory requirements, ensuring the protection of our systems and data.
- DevSecOps Integration: Integrate security into our DevOps practices, leveraging tools and methodologies that enhance security without hindering development speed or efficiency.
- Compliance and Risk Management: Ensure that all security practices and solutions comply with relevant regulatory requirements such as HIPAA, PCI DSS, and other industry standards. Identify and mitigate risks through thorough risk management practices.
- Collaboration and Leadership: Work closely with cross-functional teams, including development, operations, and compliance, to ensure that security is a shared responsibility across the organization. Provide leadership and guidance on security best practices and compliance matters.
- Continuous Learning and Improvement: Stay updated with the latest security threats, technologies, and methodologies. Implement continuous monitoring and improvement processes to ensure our security posture remains robust and adaptive.
Essential Qualifications
To be successful in this role, you will need to possess a combination of technical skills, experience, and certifications. Essential qualifications include:
- Strong Understanding of Security Principles: Including secure coding practices, vulnerability management, threat modeling, and risk assessment.
- Experience with Containerization Technologies: Such as Docker and Kubernetes, with a preference for experience with Redhat OpenShift.
- Regulatory Compliance Knowledge: Understanding of regulatory compliance requirements (e.g., HIPAA, PCI DSS) and experience implementing controls to meet these requirements.
- Certifications: Relevant certifications such as Certified Ethical Hacker (CEH), AWS Certified Security Specialty, or similar, are highly valued.
- OSI Networking Model Knowledge: Hands-on experience with the design and configuration of network security on layers 3, 4, and 7, with experience in a data center environment being highly desirable.
Preferred Qualifications
In addition to the essential qualifications, the following are preferred:
- Experience with Copado for Salesforce: Expertise in using Copado for Salesforce deployment automation and release management.
- Knowledge of Security Frameworks: Familiarity with common security frameworks such as OWASP Top 10 and CIS Benchmarks.
- GitHub Actions and Security Features: Experience using GitHub Actions for CI/CD pipelines and GitHub Security features like code scanning and secret scanning.
- DevSecOps Experience: Industrial experience with DevSecOps concepts such as static code analysis, dependency bot, and container hardening, including the integration of these into development workflows.
Skills and Competencies
To excel in this position, you will need to demonstrate a range of skills and competencies, including:
- Technical Expertise: A deep understanding of IT security principles, technologies, and methodologies.
- Problem-Solving: The ability to analyze complex security issues and develop effective solutions.
- Communication: Excellent communication skills to collaborate with technical and non-technical stakeholders.
- Leadership: The ability to lead and guide teams on security best practices and compliance.
- Adaptability: A willingness to learn and adapt to new technologies, threats, and methodologies in the ever-evolving field of IT security.
Career Growth Opportunities and Learning Benefits
At Workwarp, we are committed to the growth and development of our team members. As an IT Security Architect, you will have opportunities to:
- Expand Your Skill Set: Through training, certifications, and hands-on experience with the latest security technologies and methodologies.
- Take on New Challenges: As we grow, there will be opportunities to take on new challenges, lead projects, and contribute to the development of our security practices.
- Collaborate with Experts: Work alongside a team of experienced professionals who are passionate about security and compliance.
Work Environment and Company Culture
We pride ourselves on our dynamic and inclusive work environment. As a remote worker, you will be part of a distributed team that values flexibility, autonomy, and open communication. Our culture is built on the principles of innovation, teamwork, and mutual respect, and we are looking for individuals who share these values.
Compensation, Perks, and Benefits
We offer a competitive salary and a range of benefits designed to support your well-being and career development. While specific details will be discussed during the hiring process, you can expect a comprehensive package that includes opportunities for professional growth, flexible working conditions, and access to the latest technologies and tools in the field of IT security.
Conclusion
If you are a motivated and experienced IT security professional looking for a new challenge, we encourage you to apply for this exciting opportunity. As an IT Security Architect at Workwarp, you will play a critical role in shaping our security practices, contributing to the development of our DevSecOps capabilities, and ensuring compliance with regulatory requirements. Join our team and be part of a journey that combines innovation, security, and compliance to make a real impact in the digital world.