We are seeking an Application Security Architect to join our Architecture Team. The ideal candidate will be responsible for leading AlienVault’s application security program. This is a role focused on people, process, frameworks and tools to support a secure SDLC.  The role requires expert knowledge of application security principles and practices and a background working in an application development and coding environment within a business. As a key technical leader, you will lead a global group of talented engineers building innovative security software products.

The ideal candidate has a breadth of experience in defining, monitoring and measuring quality across a portfolio of software products. AlienVault views quality as a distributed function where every developer is responsible for building quality into everything they do. This position will ensure that we have the right quality culture, team, tools and processes to deliver on the quality goals established by the company and expected by our customers. And of course, if that describes your ideal job and you have an interest and/or background in security, we should definitely talk.

As a member of The Alien Nation, you will be entering an exciting growth stage company with offices in Austin, San Mateo, Spain and Ireland. We're on a mission to provide organizations throughout the universe with highly intelligent security that is affordable and simple to use. We founded AlienVault to help organizations of all shapes and sizes achieve world-class security without the headaches and huge expense of other solutions. And we are passionate about our mission! Interested in joining our Alien Nation?

AlienVault builds security software for global customers throughout North/South America, Europe and Asia-Pacific. Besides having the opportunity to work for an award-winning company offering an award-winning product, you’ll have a chance to work with some of the brightest minds in the security industry. Our executives and security researchers are regularly quoted in the press, and we’ve been positioned a “Visionary” by Gartner in the SIEM Magic Quadrant for the last five years running (in fact, we were the only vendor in the visionary quadrant in 2013!).

WHAT YOU WILL BE DOING:

• Work with the engineering leadership to define our secure SDLC and the security standards that need to be met for each product.
• Maintain documentation related to the Application Security program including the development of secure coding policies, procedures and standards, modification of the Software Development Life Cycle (SDLC) to include necessary security checkpoints, code review methodologies, etc.
• Implement and manage training programs to train developers on secure code development practices.
• Identify application security requirements early-on and incorporate into secure code development practices.
• Plan, coordinate, and lead teams with the design, integration, development, validation and implementation of specific security policies, systems and services.
• Evaluate new security trends and technologies.
• Provide expertise and coaching on app security best practices, standards, architectural approaches and complex technical resolutions for processes.
• Oversee quality improvement using Acceptance Test Driven Development (ATDD) efforts to ensure that deliverables are secure, scalable and reliable
• Work closely with the CTO/SVP Engineering and Engineering Team Leaders to plan and execute software engineering development cycles in an Agile environment.
• Lead and build strong global software development engineering teams and a strong, positive software engineering culture.
• Report on app security metrics to senior leadership.
• Participate as a subject matter expert in the incident response program.
• Attend design and application architectural reviews and actively lead discussions from a security standpoint.
• All other duties and responsibilities and may be assigned

WHAT YOU NEED:

• 5+ years in the following security functional areas: application security, authentication and authorization, identity and access management, dynamic application security testing, static application security testing, data security, security monitoring or SSO/2FA security, vulnerability management.
• 3+ years of Program Management experience.
• Strong program development, program management and leadership skills including experience in developing, documenting and establishing application security programs and best practices.
• Deep application development / software development experience, understanding of security protocols and APIs.
• Understanding of application threat modeling and SDLC security practices.
• Experience with agile software development methods using SCRUM preferred.
• Expertise in mitigating and addressing technology or application threat vectors
• Expertise in building a defense in depth infrastructure security architecture that includes security controls across multiple technology stacks
• Experience with Web Application Firewalls, Runtime Application Self-Protection (RASP), Reverse Proxies, and security assessment tools/methodology (network, systems, and application)
• Solid knowledge and understanding of securing all major web server environments and cloud platforms based on OWASP top ten recommendations
• Demonstrated knowledge of regulatory and statutory compliance requirements across industries
• Familiarity with dynamic web application vulnerability scanning tools and services.
• Familiarity with static code analysis tools and services.
• Familiarity with high level programming languages.
• Self-starter with strong work ethic and ability to excel as part of a geographically diverse team.
• Fluency in English and Spanish
• Excellent verbal and written communication skills.

Preferred Skills and Experience: 

• Knowledge of enterprise security/threat intelligence/threat detection a big plus.
• Experience in Network security is a plus.
• Experience in SIEM technologies is a plus.

WHAT YOU GET:

• A competitive compensation that includes base salary + equity
• The opportunity to build innovative, scalable technologies with the global leader in unified security management
• Work with a company that has been won numerous industry awards and is recognized as a Visionary SIEM vendor.

• Live and work in beautiful Austin, Texas.

ABOUT US:

Join the Alien Nation! 

We're on a mission to provide organizations throughout the universe with highly intelligent security that is affordable and simple to use. We founded AlienVault to help organizations of all shapes and sizes achieve world-class security without the headaches and huge expense of other solutions. And we are passionate about our mission!

Interested in joining our Alien Nation? We're a peace-loving bunch of extraterrestrials interested in nothing less than changing the world of security to be attainable to all organizations. Besides having the opportunity to work for an award-winning company, offering an award-winning product, you'll have a chance to work with some of the brightest minds in the security industry. Join the revolution today!