Security Architect

Position Overview

• Location Type: Hybrid (San Francisco Bay Area, with monthly travel to Oakland)
• Job Type: Full-time
• Salary: Not specified

Description: Earnies is dedicated to making higher education accessible and affordable. This role focuses on designing and implementing security solutions to protect the organization's applications, networks, and systems. The Security Architect will contribute to a secure development environment and guide the team on security best practices.

Requirements

• Experience: 10+ years of experience in a security-related field.
• AWS Experience: 5+ years of experience working with AWS environment.
• Application Security: 5+ years of experience in application security, with either functional or imperative languages.
• Security Policy Frameworks: Experience with security policy frameworks such as NIST, CIS, or FFEIC.
• Code Review: Ability to perform security-focused code reviews.
• Threat Hunting/Incident Response: Comfortable with typical threat hunting / incident response processes.
• Container/Microservices: Experience with containers, microservices, and the risks associated with these systems.
• Identity & Access Management: Understanding of both human and non-human identity, authentication and authorization.

Responsibilities

• Design and implement security solutions to address organizational needs and mitigate risks across applications, networks, and systems.
• Develop threat models and security standards, recommend security controls, and integrate security measures into system, infrastructure, and application designs.
• Develop and deliver secure coding training, provide guidance on application security best practices, and encourage adherence to secure coding standards.
• Define and enforce network access control policies, including firewalls, ACLs, and segmentation.
• Ensure timely remediation of vulnerabilities and security audit trail production in server infrastructure and workstation endpoints.
• Develop a robust Identity and Access Management (IAM) strategy by defining and implementing access management controls such as RBAC, SSO, IAM, FIdM, CASB, CIEM.

Preferred Qualifications

• Professional security certifications (e.g., CISSP, OSCP, CISM).
• Experience in an environment subject to SOX compliance.
• Proficient in NodeJS, Python, and/or Go.
• Experience with infrastructure automation tools such as Terraform and Ansible.
• Software development experience with either functional or imperative languages.

Company Information

Earnies is committed to its mission of making higher education accessible and affordable. They offer tools to help people manage their student debt and financial futures.

Application Instructions

• The location for this role is the San Francisco Bay Area.
• The position requires monthly travel to the Oakland office.