Staff Application Security Architect
Location: San Diego, California US
Requisition Number: 204428
Position Title: Security Engineer (V)
The Application Security team is an integral part of the Product Security Team at Teradata. We evangelize security at every phase of the software development life cycle, and work closely with developers to ensure applications are secure from inception through release. Given Teradata’s large portfolio of analytic applications, we are pushing the boundaries of security by scaling threat modeling, source code analysis, and analytic security. Our expertise lies in deep technical understanding of security and are security educators within Teradata and the wider security community. The Application Security team is tasked with building advanced security tools and methods for automating security and are dedicated open source contributors.
Teradata is looking for someone who is passionate about security and understands the critical role security plays in the Software Development Life-cycle. The ideal candidate is passionate about moving security early in the SDLC and will work with development teams and architects to ensure design and implementation flaws are discovered before code is shipped. If you evangelize security and love to train developers to build better, more secure software, this position is for you.
Primary Job Responsibilities:
- Work with architects and developers to perform security risk analysis and threat model applications, services, and networks
- Contribute to architecture decisions to ensure a consistent approach to security
- Work with development teams to create and integrate attacker stories, abuse cases, and unit tests into their SDLC
- Serve as the security subject matter expert during architecture discussions
- Work with systems engineers to integrate security tools into continuous integration / continuous deployment pipelines
- Perform security risk analysis for products and portfolio and derive security requirements for new software solutions to help mitigate security vulnerabilities
- Research emerging and Teradata specific threats to enable hardening of products
- Develop best practices, and write whitepapers to standardize security practices in production workloads
- Interpret dynamic/static analysis tools results, and penetration test results and describe issues and fixes to non-security experts
- Provide vulnerability remediation guidance and mentoring to product development software engineers
- Contribute to and support efforts to build security products for the Teradata platform
- Develop proof of concept security applications for the Teradata platform
- Develop proof of concept applications to demonstrate best practices
- Be a leader in security by presenting security research at public conferences
- Provide security guidelines for the organization to protect critical assets and data
- Train developers in various aspects of security to include threat modeling, security reviews, and interpreting security findings
- Guide product development teams on automating security testing
- Evaluation of new technologies, tools, and/or development techniques that impact security
- Assist in the software security certification process for the organization
- Review, analyze, and evaluate both internally developed software and vendor products and procedures to address security requirements
- Work as part of a team.
- Excellent written and verbal communication skills are required.
- Ability to communicate effectively with business representatives in explaining security topics clearly and where necessary, in layman's terms.
- Candidates must be able to explain vulnerabilities and weaknesses in the OWASP Top 10, WASC, and CWE 25 to any audience, and discuss effective defensive techniques.
- Deep understanding of HTTP and SSL/TLS protocols, and Web applications
- Knowledge of networking fundamentals (all OSI layers)
- Knowledge of the Windows and *NIX operating systems
- Familiarity with Docker and Kubernetes
- Understanding of authentication protocols and frameworks to include OAuth, OpenID, and/or AWS IAM
- Familiarity with dynamic and static analysis tools
- Deep understanding of continuous integration / continuous deployment processes and tools
- Ability to interpret dynamic/static analysis tools, and penetration test results and describe issues and fixes to non-security experts
- Ability to automate tasks using a scripting language (Python, Perl, Ruby, etc).
- Ability to program in C, C++, C#, Objective C, Python, Java, PHP and/or ASM (x86)
- The ideal candidate has experience working with automation script languages such as Puppet, Chef, Cloud Formation, etc.
- Familiarity with common reconnaissance, exploitation, and post exploitation frameworks
- Demonstrated understanding of financial sector, or other large organization, security and IT infrastructures
- The ideal candidate has experience with cloud and virtualized technology in environments such as AWS, Azure and VMware
- Knowledge of current international best practices in privacy.
- MS/BS degree in Electrical Engineering, Computer Science, Information Technology, or related field. Advanced degree highly preferred
- San Diego
*Our total compensation approach includes a competitive base salary, 401(k), strong work/family programs, and medical, dental and disability coverage.
Teradata is an Equal Opportunity/Affirmative Action Employer and commits to hiring returning veterans.
CountryEEOText_Description: Teradata invites all identities and backgrounds in the workplace. We work with deliberation and intent to ensure we are cultivating collaboration and inclusivity across our global organization. We are proud to be an equal opportunity and affirmative action employer. We do not discriminate based upon race, color, ancestry, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related conditions), national origin, sexual orientation, age, citizenship, marital status, disability, medical condition, genetic information, gender identity or expression, military and veteran status, or any other legally protected status.
City: San Diego
Community / Marketing Title: Staff Application Security Architect
Job Category: Engineering
Considering COVID-19, we are still hiring but conducting virtual interviews to keep our candidates and employees safe. Many roles will be temporarily remote or work from home to comply with current safety regulations. These roles will be required to be in the office once it is safe or restrictions are lifted. Read more on our response here: Teradata Response to COVID-19
With all the investments made in analytics, it’s time to stop buying into partial solutions that overpromise and underdeliver. It’s time to invest in answers. Only Teradata leverages all of the data, all of the time, so that customers can analyze anything, deploy anywhere, and deliver analytics that matter most to them. And we do it at scale, on-premises, in the Cloud, or anywhere in between.
We call this Pervasive Data Intelligence. It’s the answer to the complexity, cost, and inadequacy of today’s analytics. And it's the way Teradata transforms how businesses work and people live through the power of data throughout the world. Join us and help create the era of Pervasive Data Intelligence.
Location_formattedLocationLong: San Diego, California US