Security Solutions Architect

Job description

Equifax is looking for a Security Solutions Architect who can provide technical architecture and engineering support to various development and operations teams and work alongside them to build secure and robust systems. • This position does not offer immigration sponsorship (current or future) including F-1 STEM OPT extension support. • This position can be located in one of three locations: Alpharetta, GA (preferred) but open to our midtown location in Atlanta OR in our St. Louis, MO office. This resource will have to be local to one of the three locations listed. • Corporate Return To Office expectations: Onsite weekly requirements each Tuesday, Wednesday, and Thursday each week. What you will do • Develop and revise cloud security standards as well as best practices documentation • Participate in working groups that tailor the company’s security policies and standards for use in cloud environments • Translate security and technical requirements into actionable guidance. • Communicate security risks and solutions to different audiences ranging from business leaders to engineers. • Lead and influence multi-disciplinary teams in implementing and operating cyber security controls • Provide security architecture and engineering consulting to development, technology, and business teams. • Develop key risk indicators which can demonstrably measure the security posture of cloud systems • Recommend automation of the implementation and validation of security controls to ensure teams meet Equifax’s security requirements. • Champion security best practices to highly technical teams as well as mentor team members and those in other technical roles who are critical to the successful delivery of Equifax’s cybersecurity strategy. • Stay current on emerging security threats, vulnerabilities, and controls. What experience you need • 7+ yrs of overall experience in security architecture, application security, cloud security, network security, and/or systems security. • 3+ yrs of experience with and a strong foundational understanding of secure software engineering principles, encryption technologies, audit controls, distributed architectures, cloud security controls, and/or security architecture. • 2+ yrs of experience with any cloud service offerings (Google, AWS , Azure) and related security controls. • 2 + yrs of experience working closely with technical teams to clearly communicate threats and architect solutions What could set you apart • Certifications - GCP and/or AWS preferred • Bilingual skills preferred • Able to automate/script daily tasks through Python, bash, or equivalent • Well versed in compliance and security standards and guidelines including: SOX, NIST, CIS, ISO 27001/2, PCI DSS. • Proven understanding of security controls and technologies including SIEM, DLP, WAF, IPS, and firewalls. • Experience with one or more of the following programming languages: C#, Java, C/C++ and/or Python #LI-Hybrid #LI-JC2

Requirements

• Equifax is looking for a Security Solutions Architect who can provide technical architecture and engineering support to various development and operations teams and work alongside them to build secure and robust systems

• 7+ yrs of overall experience in security architecture, application security, cloud security, network security, and/or systems security

• 3+ yrs of experience with and a strong foundational understanding of secure software engineering principles, encryption technologies, audit controls, distributed architectures, cloud security controls, and/or security architecture

• 2+ yrs of experience with any cloud service offerings (Google, AWS , Azure) and related security controls

• 2 + yrs of experience working closely with technical teams to clearly communicate threats and architect solutions

• What could set you apart

• Able to automate/script daily tasks through Python, bash, or equivalent

• Well versed in compliance and security standards and guidelines including: SOX, NIST, CIS, ISO 27001/2, PCI DSS

• Proven understanding of security controls and technologies including SIEM, DLP, WAF, IPS, and firewalls

• Experience with one or more of the following programming languages: C#, Java, C/C++ and/or Python

SHARE THIS OPENING

Similar jobs

Application Security Engineer - Remote

Invalid date

Ryder

Honolulu, HI

CI/CD

Azure

Azure Devops

_Job Seekers can review the Job Applicant Privacy Policy by clicking HERE. ( SUMMARY We seek a highly motivated and experienced Application Security Engineer to join our growing security team. This role is highly technical and candidates must possess a solid understanding of the security and privacy of our company's applications and data. The Application Security Engineer must understand development, coding, security engineering, and secure systems configurations. This position ensures that every step of the software development lifecycle (SDLC) follows security best practices. This involves conducting security assessments with SAST and DAST tools, reading source code, threat modeling, and designing and implementing secure software development practices. They will determine where security vulnerabilities exist and implement fixes. They must understand how an application may be misused and exploited. The Application Security Engineer will collaborate with software development teams and provide guidance on best practices for secure coding. They will also stay up to date on the latest security trends and technologies and integrate them into the organization's security strategy. The ideal candidate will have strong analytical and problem-solving skills, as well as experience in application security and knowledge of programming languages and web technologies. A Bachelor's degree in Computer Science and certifications such as CISSP, OSCP, or CASE are preferred. ESSENTIAL FUNCTIONS Conduct security assessments that require expertise of our organization's applications using both Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) methodologies. Collaborate with software development teams to integrate security into the development life cycle. Conduct security assessments of web, mobile, and other applications. Analyze security assessment results to identify security vulnerabilities and provide guidance on remediation. Design and implement secure software development practices, including threat modeling, secure coding standards, and code review. Stay current with security threats, trends, and technologies, and recommend new security controls as needed. Conduct application security investigations and provide recommendations to mitigate risk. Maintain security documentation, provide subject matter expertise, and collaborate on security policies, procedures, and standards. ADDITIONAL RESPONSIBILITIES Performs other duties as assigned. EDUCATION Bachelor's degree in computer science, information security, or a related field EXPERIENCE Five (5) years or more experience with OWASP, SAST, DAST, SCA, RASP and common security tools, required. Seven (7) years or more application security, security engineering, software development, or a related field, required. Five (5) years or more strong understanding of web application security and common attack vectors. (e.g. SQL injection, XSS, CSRF), required. Five (5) years or more experience with secure coding practices, threat modeling, and secure software development life cycle (SDLC) methodologies. required Five (5) years or more proven experience in diagnosing, isolating, resolving complex issues and recommending/implementing strategies to resolve problems, required. Five (5) years or more demonstrated experience with systems integration processes, methodology and tools, required. Seven (7) years or more development and scripting experience, required. Five (5) years or more professional application security role, required. Five (5) years or more experience with API and Web Security, required. Three (3) years or more experience with WAF, or similar application security infrastructure a plus, preferred. Seven (7) years or more experience in integrating security in CI/CD, DevOps, required. Six (6) years or more experience process or operation management Six (6) years or more experience Value Stream Mapping, Continuous Flow, Pull Replenishment and other process improvement experience. SKILLS Excellent communication skills, both verbal and written, and the ability to work effectively with cross-functional teams. Ability to create and maintain professional relationships within all levels of the organization (peers, work groups, customers, supervisors). Ability to work independently and as a member of a team. Flexibility to operate and self-driven to excel in a fast-paced environment. Capable of multi-tasking, highly organized, with excellent time management skills Proficiency in at least one programming language (e.g. Python, .NET, Javascript) with .NET preferred., advanced, required. Proficiency in at least one common scripting language (e.g. PowerShell, bash, etc.), advanced, required. Familiarity of NIST framework, PCI, ISO 27001, SOC, SOX, CCPA, GDPR and global regulations, expert, required. CI/CD experience with Azure Devops, Terraform or other automation and integration technologies, expert, required. Risk management findings, vulnerability prioritization, threat modeling, and mitigation strategy, advanced, required. LICENSES CISSP, OSCP, CASE, or other industry-leading certifications, preferred. TRAVEL 1-10% Applicants from California, Colorado, Hawaii, New Jersey, New York City, and Washington: Salary is determined based on internal equity; internal salary ranges; market data/ranges; applicant’s skills; prior relevant experience; certain degrees or certifications, etc. The salary for this position ranges from $120,000.00 to $150,000.00. Employees may also be eligible to receive an annual bonus, as applicable. Ryder offers comprehensive health and welfare benefits, to include medical, prescription, dental, vision, life insurance and disability insurance options, as well as paid time off for vacation, illness, bereavement, family and parental leave, and a tax advantaged 401(k) retirement savings plan Job Category: Information Security Ryder is proud to be an Equal Opportunity Employer and Drug Free workplace. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, among other things, or status as a qualified individual with disability. _Job Seekers can review the Job Applicant Privacy Policy by clicking HERE. ( Current Employees: If you are a current employee at Ryder (not a Contractor or temporary employee through a staffing agency), please click here ( to log in to Workday to apply using the internal application process. #wd

Senior Cyber Capability Developer

Apr 23, 2025

Redhorsecorp

Huntsville, AL

Redhorse Corporation is seeking a Senior Cyber Capability Developer in Huntsville, AL, to enhance cybersecurity measures and protect sensitive information. The role involves analyzing cyber threats and developing security tools to mitigate vulnerabilities.

Cyber Security & Control Systems Storage & Virtual Program Engin Jobs

Apr 25, 2025

Goldbelt Inc

San Antonio, Texas

Fabric

Goldbelt Inc is seeking a Cyber Security & Control Systems Storage & Virtual Program Support Engineer to provide on-site support at Joint Base San Antonio, TX. This role involves the testing, implementation, and sustainment of virtual infrastructure solutions for military programs.

Save job

Apply now

Job Type

Fulltime role

Skills required

Python, C#, Java

Location

Alpharetta, Georgia

Salary

No salary information was found.

Date Posted

April 19, 2025

Save job Apply now