Security Architect
EarnestSalary not specified
Full Time
Expert & Leadership (9+ years)
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
NoVisa
Energy, UtilitiesIndustries
Requirements
- Bachelor’s degree in Information Systems or a related technical field or equivalent experience
- 5+ years applied experience in application security or related position
- Background performing cybersecurity code analysis, including identifying and resolving false positives, explaining vulnerabilities in simple terms to project teams, and providing remediation recommendations to development teams
- Experience with software composition analysis and tools to scan source and binary code for identifying dependency vulnerabilities
- Experience with implementing and using static and dynamic analysis tools
- Experience performing pentesting
- Authorization to work in the United States (no sponsorship for work visas)
- Ability to work hybrid schedule (at least three days in office, including Tuesdays and Wednesdays, up to five days if needed)
Responsibilities
- Assess current design and codebase to identify areas in need of improvement and work with project teams to resolve security issues
- Work seamlessly with Eversource developers to ensure successful adoption of required security approaches and capabilities
- Conduct threat modeling for new and existing applications
- Perform security testing such as static code analysis, pentesting, and dynamic application security testing
- Apply cybersecurity background to perform code analysis when resolving false positives and provide remediation recommendations
- Establish application security requirements based on company standards and industry best practices
- Develop and maintain infrastructure as code security policies
- Test and evaluate security tools and products
- Deliver project level planning, design, and implementation of security solutions and controls related to Secure Software Development Life Cycle (SSDLC), e.g., code review, risk assessments, threat modeling, static code analysis, and dynamic application scanning
- Get deeply involved in security issues around secure coding and secure design, assist others in resolving security issues by offering alternative coding solutions
- Work with project teams to incorporate security into the design architecture
- Promote a security mindset, educate application developers on Eversource security practices, and cultivate a security culture across developers, project teams, and business areas
- Interact with technology and business colleagues associated with projects to remain at the forefront of industry trends, best practices, and technological advances in application cybersecurity
Skills
SSDLC
Threat Modeling
Static Code Analysis
Dynamic Application Scanning
Code Review
Risk Assessments
Secure Coding
Secure Design
Cybersecurity Architecture
Eversource Energy
About Eversource Energy
N/AHeadquarters
N/AYear Founded
N/ACompany Stage
Related Jobs
RemoteRemoteSenior Application Security Engineer
M&T BankSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteCyber Security Architecture
GE HealthcareSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Cloud Security Architect (R-00079)
True Zero TechnologiesSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSoftware Architect
CrowdboticsSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteSecurity Engineer, Infrastructure Security
OpenAI$292,500 - $405,000/year
- Full Time
- Junior (1 to 2 years)
RemoteSecurity Engineer, Product Security
Chainlink LabsSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)