Security Architect

Summary

Join Benevity, a B Corporation committed to purpose and profits, as a Security Architect. Lead the design and implementation of security frameworks, protecting our products, infrastructure, and operations. Collaborate with engineering, IT, and compliance teams to define security best practices and mitigate threats. Ensure the security resilience and trust of our products and services. This role is crucial in supporting Benevity's mission to power purpose-driven businesses. You will champion security initiatives and promote a security-conscious culture. We offer a hybrid work model with at least 50% in-office time for those within commuting distance.

Requirements

• Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or a related field, can be substituted with relevant experience
• 8+ years of experience in security architecture, security engineering, or security operations, with a focus on architecture and design. Demonstrable experience leading and mentoring security engineers
• Expertise in cloud security (AWS, Azure, or GCP)
• Strong knowledge of identity and access management (IAM), encryption, firewalls, SIEMs, and EDR solutions
• Hands-on experience with container security (Docker, Kubernetes) and DevSecOps practices
• Proficiency in security frameworks such as MITRE ATT&CK, CIS Controls, and Zero Trust Architecture
• Familiarity with penetration testing, vulnerability assessments, and forensics
• Strong scripting and automation skills in Python, PowerShell, or Bash

Responsibilities

• Architect, design, and implement secure architectures for applications, infrastructure, and cloud environments (AWS, Azure, GCP), considering scalability, performance, and cost optimization. Develop and maintain architectural blueprints and standards
• Define and champion secure design principles and patterns, ensuring their consistent application across all systems and projects. Provide expert guidance on secure architecture best practices
• Conduct risk assessments and threat modeling for products and infrastructure
• Drive the adoption of security best practices and standards across the organization. Champion security initiatives and promote a security-conscious culture
• Collaborate with product development teams to embed security into the SDLC (Software Development Lifecycle)
• Lead security incident response efforts, including investigation, containment, and remediation
• Provide guidance on secure network, system, and cloud configurations
• Implement and oversee security monitoring, logging, and incident detection capabilities
• Evaluate and integrate security tools for endpoint, application, and cloud security
• Ensure compliance with industry regulations and standards such as NIST, ISO 27001, SOC 2, GDPR, and HIPAA
• Train and mentor engineering teams on security best practices
• Develop and maintain security policies, standards, procedures, and guidelines, integrating them seamlessly within the overall security architecture. Ensure policies are aligned with industry best practices and regulatory requirements

Preferred Qualifications

• Experience working in highly regulated industries (e.g., finance, healthcare, government)
• Knowledge of blockchain security, IoT security, and AI security risks
• Experience with security orchestration, automation, and response (SOAR) tools
• Certifications such as CISSP, CISM, CEH, or AWS Security Specialty

Benefits

• Innovative work
• Growth opportunities
• Caring co-workers
• A chance to do work that fills us with a sense of purpose
• Hybrid work model (at least 50% in-office time for those within commuting distance)