Laconic

Overview of job

We are seeking a highly skilled and experienced Security Architect to join our dynamic team. The ideal candidate will have a deep understanding of cybersecurity principles and a proven track record in adopting and implementing ForgeRock or similar platforms for the tokenization of API and data access. As a Security Architect, you will play a crucial role in enhancing our organization's security posture by designing and implementing robust security frameworks and strategies that ensure the secure access and transmission of sensitive information.

Key Responsibilities:

• Lead the design and implementation of secure architectures for our IT projects, focusing on tokenization solutions for API and data access.
• Evaluate, recommend, and integrate security tools and technologies such as ForgeRock or similar alternatives to enhance our security infrastructure.
• Develop and maintain comprehensive security documentation, including architecture designs, policies, and procedures.
• Collaborate with IT and development teams to incorporate security considerations into the software development lifecycle and DevOps practices.
• Conduct risk assessments and security reviews of existing architectures and propose enhancements or remediations as necessary.
• Stay abreast of the latest security trends, threats, and technologies to continuously improve our security strategy.
• Lead the response to security incidents, including forensic analysis and mitigation strategies.
• Provide expert guidance and leadership on security best practices, including the management of identities, access controls, and encryption standards.
• Work closely with compliance teams to ensure security architectures comply with relevant regulations and standards.

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.
• Minimum of 5 years experience in a Security Architect role, with a focus on API and data access security.
• Proven experience in implementing tokenization solutions using ForgeRock or similar platforms.
• Deep understanding of Zero Trust architecture principles and their application in securing API and data access.
• Strong knowledge of security frameworks (e.g., NIST, ISO/IEC 27001), regulations (e.g., GDPR, HIPAA), and best practices.
• Experience with cloud security architectures, containerization, and microservices.
• Familiarity with programming and scripting languages (e.g., Python, Java, Shell scripting) is desirable.
• Excellent communication and leadership skills, with the ability to influence and engage stakeholders across the organization.
• Relevant security certifications (e.g., CISSP, CISM, CCSP) are highly advantageous.