Senior Security Architect

Job not on LinkedIn

October 6

Apply Now

Receive Emails with Similar Jobs

Shift Technology

WebsiteLinkedInAll Job Openings

Artificial Intelligence • Insurance • SaaS

Shift Technology is a company that specializes in AI-driven solutions for the insurance industry. They offer a variety of products designed to optimize critical insurance decisions, with a focus on fraud detection, risk detection, and claims management. Leveraging deep insurance expertise and advanced artificial intelligence technology, Shift Technology helps major insurance providers across the globe improve decision-making accuracy and efficiency. Their solutions are highly reliable, secure, and capable of providing clear explanations for each decision made, supporting compliance efforts in areas like AML/KYC. Trusted by some of the top insurers worldwide, Shift Technology has established itself as a leader in the field of AI for insurance.

201 - 500 employees

Founded 2014

🤖 Artificial Intelligence

☁️ SaaS

💰 $220M Series D on 2021-11

📋 Description

• Design and maintain the security reference architecture for our Azure-native, Windows, and Kubernetes-based SaaS products. • Act as the primary security consultant for product and engineering teams, providing authoritative guidance on secure design patterns for Azure infrastructure and services. • Review and approve architectural designs for new services to ensure they align with security principles (Zero Trust, defense-in-depth) and compliance requirements. • Define and enforce security standards for Azure networking, including VNet segmentation, firewalling, and private connectivity. • Lead threat modeling exercises (e.g., STRIDE) with development teams for new products and features to identify and mitigate risks early in the SDLC. • Develop and maintain secure coding standards and provide expert guidance on the prioritization and remediation of findings from SAST, DAST, and SCA tools. • Architect security solutions for the SaaS application layer, including tenant isolation, customer data segregation, secure APIs, and authentication/authorization patterns. • Design and enforce security patterns for protecting data at rest and in transit across all Azure data platforms (e.g., Azure SQL, Cosmos DB, Databricks). • Partner with the Data Access Governance function to translate data classification policies into tangible technical access controls. • Architect solutions for secrets management, encryption, and key management, primarily leveraging Azure Key Vault. • Architect and design a secure data access solution using VDI (Azure Virtual Desktop), including the integration of Data Loss Prevention (DLP) and other data protection controls to prevent data exfiltration. • Develop security-as-code and Infrastructure as Code (IaC) to create guardrails and proactively detect insecure configurations. • Serve as a senior technical escalation point for the Security Operations team during complex cloud security investigations. • Evaluate, prototype, and recommend new cloud security technologies and services to mature the overall security program.

🎯 Requirements

• At least seven (7) years of proven experience in a senior cloud security, product security, or security architecture role. • Bachelor’s Degree in a relevant field or equivalent work experience. • Relevant security or Azure certifications (e.g., AZ-500, CISSP) are highly desirable. • Proven experience designing security for multi-tenant SaaS applications in a public cloud environment, preferably Azure. • A firm understanding of core security principles like least privilege, defense-in-depth, and zero trust, and able to champion and educate colleagues on those principles. • Deep understanding of the OWASP Top 10, common application and cloud infrastructure security vulnerabilities, and their mitigation. • Hands-on experience with application security tools (SAST, DAST, SCA) and threat modeling methodologies such as STRIDE. • Strong knowledge of core Azure security services (e.g., Sentinel, Defender for Cloud, Key Vault, Private Link, Azure Policy). • Expert-level knowledge of Microsoft Entra ID, including roles, conditional access, application permissions, and identity governance. • Experience designing and implementing security controls for a variety of data platforms in Azure (e.g., Azure SQL, Cosmos DB).

🏖️ Benefits

• Flexible remote and hybrid working options • Competitive Salary and a variable component tied to personal and company performance • Company equity • Multiple Learning and Development opportunities, including Focus Fridays, a half-day each month to focus on learning and personal growth • Generous PTO and paid holidays • Mental health benefits • 2 MAD Days per year (Make A Difference Days for paid volunteering)