Software Security Architect

Responsibilities: The Security Architect reports to the Chief Information Security Officer. The Chief Information Security Officer determines the activities due by the Security Architect based on evolving needs to improve the company’s security posture and to secure CHAMP assets. Examples of the Security Architect’s responsibilities and duties include:

• Document and address information security, cybersecurity architecture, and systems security engineering requirements throughout the application acquisition or development life cycle.
• Employ secure configuration management processes.
• Ensure that acquired or developed system(s) and architecture(s) are consistent with the security policies.
• Establish a strategy to implement security-by-design in the software development lifecycle through the development of policies.
• Develop a threat modeling methodology, a framework to define the security requirements per project, a strategy for enabling the automation of Static security testing and dynamic Security Testing through unit security test framework and automated security test cases.
• Improve the Coding Standard and include security best practices.
• Lead a security awareness program for software development.
• Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
• Determine the protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately.
• Provide specialist advice and recommend approaches across teams and various stakeholders.
• Inspire and influence others to execute security principles.
• Research and apply innovative security architecture solutions to new or existing problems and be able to justify and communicate design decisions.
• Develop vision, principles and strategy for security architecture.

Knowledge, Skills and Abilities:

• CPSA or equivalent highly appreciated.
• CSSLP or equivalent highly appreciated.
• CISSP or equivalent is appreciated.
• Knowledge of the application firewall concepts and functions (e.g., Single point of authentication/audit/policy enforcement, message scanning for malicious content, data anonymization, data loss protection scanning, accelerated cryptographic operations, SSL security, REST/JSON processing).
• Ability to drive strategy to establish SAST and DAST framework.
• Knowledge of the enterprise information technology (IT) architectural concepts and patterns.
• Knowledge of installation, integration, and optimization of system components.
• Knowledge of remote access technology concepts.
• Knowledge of communication methods, principles, and concepts that support the network infrastructure.
• Excellent communication (written and verbal) English skills.

Education and Experience:

• Bachelor’s Degree graduate in related field of study.
• Master’s Degree in related field of study is appreciated.
• Experience as a Security Architect role for 3 years preferred.
• Experience in Software Development for 5 years.

The selected candidate may be subject to the provision of an up-to-date (not older than 3 months) criminal record certificate.

Security: the successful candidate will have to comply with CHAMP Security Requirements (including but not limited to CHAMP’s IT Security Policies, especially the ISMS Policy and the Acceptable Use Policy, mandatory courses, confidentiality and data protection, use of company assets, and incident reporting).

CHAMP Cargosystems is an equal opportunity employer and prohibits discrimination and harassment of any kind. We are committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions are based on business needs, job requirements and individual qualifications, without regard to race, ethnic background, religion or belief, family or parental status, or any other status protected by the laws or regulations in the locations where we operate.

Please note that any personal data that you submit along with your application will be processed by CHAMP and may be processed by any of its global entities as necessary. These data will be treated in strict compliance with the applicable data protection legislation (i.e. the Law of 2 August 2002 on the protection of individuals with regard to the processing of personal data, as amended, and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, - the GDPR -, which entered into force on 25 May 2018, as well as any other subsequent regulation).

Further details on what is considered personal data, how it is processed by CHAMP as well as your rights in this regard can be found here.

Any questions relating to this should be addressed to CHAMP’s Data Protection Officer: Gertrud Huberty 2, rue Edmond Reuter Zone d'Activités "Weiergewan" L-5326 Contern Luxembourg Email: dpo@champ.aero (Please do not use this email to send job application).