Information Security Architect (Secure Coding)

Mouser Electronics
MANSFIELD, TEXAS
Full-time

Title : Information Security Architect (Secure Coding)

Are you a master of digital defense? Our dynamic team is on the hunt for an Information Security Architect who can design top-notch solutions to protect our cloud and Internet Business unit’s digital assets.

We are on a mission to safeguard digital frontiers.

As our Information Security Architect, you will :

  • Provide security recommendations for architecture and technology, and reports on all matters relevant to application security.
  • Ensure that every step of the software development lifecycle (SDLC) follows security best practices.
  • Work with the various teams to develop and implement security standards and training.
  • Be responsible for testing and reviewing code to validate secure coding principles and aid in testing the application against security risks / parameters before release
  • Develop and implement comprehensive global security architectures encompassing hybrid cloud, encryption, network security, VPN technologies, operating systems, single sign-on (SSO), zero trust architecture, role-based access control and other advanced security measures.
  • Design and implement stringent access controls policies aligning with the least privilege security model.
  • Leverage Enterprise Architecture principles to design secure and scalable systems.
  • Use data analytics to create measurable security metrics and reports.
  • Evaluate systems, workflows, methodologies, source code, and configurations against appropriate information security standards and provides reports to document
  • Assist with developing, deploying, and maintaining information security related tools and systems in support of information security operations
  • Maintain strict confidentiality of all sensitive or confidential information
  • Train both technical and non-technical audiences on security practices and standard
  • Perform penetration testing planning, analyzing, remediation recommendations, and dashboarding
  • Use expertise with web application vulnerability scanners (Acunetix / HP Web Inspect / IBM AppScan etc. and with source code analysis tools (Fortify / Checkmarx / Vera code / Klocworks)
  • Provide remediation guidance to identified vulnerabilities.
  • Provide security testing (Black, white, and grey box)
  • Mature and help implement Threat Modelling capability with SDLC and Application development efforts.
  • Use good business judgment and consistent communication skills to keep stakeholders informed
  • Maintain a positive attitude, good teamwork, professionalism and interpersonal skills, proactively seeking solutions, taking initiative, and escalating, where necessary

Key Skills and Experience :

  • Understanding of OWASP Top 10 and SANS Top 25 and able to map the vulnerabilities identified against the standards
  • Experience in web application penetration testing and web services (API) penetration testing, mobile application security testing
  • Web Application Security Assessment - In-depth knowledge of web application attacks and defense strategies (SQL injection, XSS cross-site scripting, CSRF, logic flaws, etc.)
  • Experienced in vulnerability Assessments using Automated Scanners such as Nessus / Qualys and Manual Security Testing Kali Linux / Metasploit and other infrastructure security testing tools
  • Familiarity with web application vulnerability scanners (Acunetix / HP Web Inspect / IBM AppScan etc. and with source code analysis tools (Fortify / Checkmarx / Vera code / Klocworks)
  • Good understanding of web application architecture and Secure development life cycle (SDLC).
  • Strong understanding of enterprise security architecture, zero trust and RBAC
  • Good understanding of network security standards and protocols.
  • Emerging technology awareness like Artificial intelligence, machine learning etc.
  • Minimum of 6 years of hands-on experience in Application Security making use of security standards, languages, tools, and applications listed
  • 5+ years in Application Security (OWASP) experience required. For internal candidates, experience can be a combination of internal and external experience.
  • General knowledge of OS-level scripting languages (bash, ksh, PowerShell, Python, etc.) a plus
  • General knowledge of Active Directory (AD), Intrusion Detection and Cloud Technology (Azure)

Ready to safeguard our digital world? Apply now and make a difference!

Information Technology is a strategy for our organization. We have top notch technologies, diverse teams and an environment full of fun, opportunities and growth.

We align, contribute, innovate and enable all the areas within our business.

Mouser Electronics, part of the Berkshire Hathaway family of companies, was founded in 1964. We are a Top 10 Global Distributor of semiconductors and electronic components.

Join our growing global team of 3,300+ employees and be part of the success story! Our full-time jobs come with competitive salaries and comprehensive benefits like an on-site fitness center and medical clinic at our HQ, located in the booming D / FW region of Texas.

This is a summary of the primary accountabilities and requirements for this position. The company reserves the right to modify or amend accountabilities and requirements at anytime at its sole discretion based on business needs.

Any part of this job description is subject to possible modification to reasonably accommodate individuals with disabilities.

Category : IT / IS

Equal Opportunity Employer, including disability and veterans.

LI-SR1

30+ days ago
Related jobs
Mouser Electronics
Cedar Hill, Texas

Information Security Architect (Secure Coding). Develop and implement comprehensive global security architectures encompassing hybrid cloud, encryption, network security, VPN technologies, operating systems, single sign-on (SSO), zero trust architecture, role-based access control and other advanced ...

Highmark Health
TX, Working at Home, Texas

The Principal Information Security Architect – Enterprise Technology serves as the most senior security architect and advanced technology analyst in the company. The Open Group Architecture Framework Certification (TOGAF), Certified Information Security Professional (CISSP), Certified Information Se...

Glocomms
Dallas, Texas

In this role, the architect will be responsible for developing secure, scalable solutions to protect critical assets, such as credentials, API keys, and certificates, while aligning with regulatory requirements and industry best practices as part of the firm's overarching information security archit...

Promoted
Raytheon
Grand Prairie, Texas

Typically requires a Bachelor’s in Computer Science, Computer Engineering, Software Engineering, Electrical Engineering, Math or related engineering/science discipline and 5+ years of experience. As a System Security software engineer, the candidate will be involved with software and firmware design...

Promoted
Allied Universal
Mansfield, Texas

Security Officer Armed Tool Warehouse. Allied Universal, North America's leading security and facility services company, provides rewarding careers that give you a sense of purpose. Provide customer service to our clients by carrying out safety and security procedures, site-specific policies and whe...

Promoted
Sourcepass
Dallas, Texas

The Cyber Security Analyst is a front-facing role, working directly with incoming alerts, reports, and metrics to monitor and maintain the security of Sourcepass' clients. The Analyst performs minor response to non-serious, non-complex events and escalates anything else to senior security team s...

Promoted
Mastech Digital
Dallas, Texas

Act as an escalation point for security analysts and be able to assist in problem solving by providing cybersecurity expertise and knowledge of corporate technology environment. Assist with training new and existing SOC analysts to utilize the Client security tools necessary to perform analyst dutie...

Promoted
BBAM
Dallas, Texas

The Compliance Analyst is responsible for supporting customer and compliance certification audits, performing quarterly security assessments, monitoring control effectiveness and compliance framework updates, managing evidence, and assisting with tool administration. Assist Compliance Officer with e...

Tek Ninjas
TX, United States

As a member of the Global Cyber Security Correlations Team, the Analyst 2, Security is an experienced professional responsible for analysis, response, and triage of security alerts/events, determining which steps to take to mitigate the threat. Security analysts are responsible for analyzing system ...

Cetera Financial Group
Dallas, Texas

The surveillance analyst position works directly with the Senior Analyst team leader. Assist in responding to inquiries from Compliance/Supervision. Must have 1-2 years of experience in Compliance, Surveillance and/or Supervision. ...