Arrive · 4 hours ago
Senior Security Architect
Atlanta, GA
Full-time
Onsite
Senior Level
5+ years expArrive is a leading global mobility platform focused on transforming urban mobility. They are seeking a Senior Security Architect responsible for the security design, review, testing, and implementation of security capabilities within their products.
Responsibilities
A thorough understanding of the organization's technology and IT systems
Translate business requirements and use cases into security controls and standards
Plan, research, and design secure application architectures and CI/CD pipelines
Develop, review, and collaborate on the configuration of cloud account configuration, network isolation, security groups, access policies, network policies, VPNs, and overall compute platform security, including both host-based and container-based workloads
Integrate identity management systems, digital certificates, and secrets management with application workloads
Assess security capabilities, evaluate tools and approaches and make recommendations as part of the application security roadmap that is fed into team backlogs
Help teams to do their threat modeling, review vulnerabilities and suggest strategies and tactics for remediation
Validate security implementations and participate in remediation and risk acceptance efforts
Define, track and report on security metrics to demonstrate security maturity and program effectiveness
Establish disaster recovery procedures and conduct security breach drills
Respond quickly and effectively to all security incidents and provide post-event analyses
Guide the overall security community, cultivating a sense of security awareness, and arranging for continuous education
Participate in Compliance Framework and audits in the Engineering organisation (ISO 27001, GDPR, SOC2, ISAE 3402, TX RAMP…)
Remain up to date with the latest trends, standards, and products
Qualification
Required
A bachelor's or associate's degree in IT, computer science, or equal experience
5-10 years or more of experience in application development and security
Experience with AWS, including EKS, multi-account setups, GuardDuty, KMS, Config, SSM, CloudFront, Firewall Manager, Shield, Network Firewall, WAF, IAM, CloudTrail, Security Hub, Secrets Manager, Inspector, Global Accelerator, ELB, EC2, Athena
Experience with designing and implementing security for APIs (e.g., authentication, authorisation, rate limiting, API gateways)
Experience with data centers and hybrid environments
Experience with container security platforms, orchestration, and runtime protection
A strong working knowledge of current application and infrastructure risks, secure application design, and operating systems including both Windows and Linux experience
Excellent teaching, problem-solving, communication, and interpersonal skills
Experience integrating security into DevOps pipelines and fostering a DevSecOps culture
Knowledge of Java, Kotlin, JavaScript, NodeJS, Go, Kotlin, Swift, Python, bash, Ruby, C# and SQL
Knowledge of data encryption, data loss prevention (DLP), and data privacy regulations
Knowledge of security testing tools (SAST, DAST, CNAPP) integration and implementation
Preferred
Knowledge on securing serverless functions and platforms would be a bonus
Knowledge on security aspects of hardware would be a bonus
Company
Arrive
Arrive brings together some of the most trusted names in urban mobility, EasyPark, ParkMobile, RingGo, Parkimeter, Flowbird, YourParkingSpace, Parkopedia, and Yellowbrick, into one global force for smarter, more seamless travel.
1001-5000 employees
Funding
Current Stage
Late StageCompany data provided by crunchbase