Principal Security Architect

Every day, the world gets more digital thanks to tens of millions of developers building the future faster than ever. But with exponential growth comes exponential risk, as outnumbered security teams struggle to secure mountains of code. This is where Snyk (pronounced “sneak”) comes in. Snyk is a developer security platform that makes it easy for development teams to find, prioritize, and fix security vulnerabilities in code, dependencies, containers, and cloud infrastructure — and do it all right from the start. Snyk is on a mission to make the world a more secure place by empowering developers to develop fast and stay secure.

Snyk is looking for a Principal Security Architect. As a Security Architect at Snyk, you'll play a pivotal role in our mission to build a safer, more secure company. Our commitment to excellence in security innovation, coupled with a dynamic and collaborative work environment, makes Snyk an exciting and rewarding place to develop your career. We are building out a new architecture function within Snyk’s Trust Office to support the company’s maturity. You will have a unique opportunity to help build and shape the technical capabilities and the overall Trust program from an early stage. This role will report directly to the Chief Information Security Officer.

In this role, you will be at the forefront of shaping the security design and strategies for our products, cloud, and corporate systems. You'll have the opportunity to work alongside some of the brightest minds in the industry. 

You’ll Spend Your Time:

• Providing technical leadership to help devise & refine security strategies for Snyk, ensuring that they align with the evolving threat landscape and industry best practices
• Taking ownership of security design and strategy for the broader organization and ensure alignment to overarching business goals
• Continuously assessing security risks within our development and operational processes, identifying vulnerabilities and proactively guide the teams towards mitigating them to safeguard our products and customer data
• Establishing technical architecture principles; host and conduct in-depth architecture reviews of systems to ensure they meet stringent security standards and requirements, and recommend enhancements where necessary
• Ensuring Snyk stay current with the latest security tools and technologies, evaluating their applicability and integrating them into our security processes to enhance our security posture
• Collaborating cross-functionally with teams, including developers, engineers, product managers, business leaders, executives, and customers fostering a security-aware culture within and outside of the Snyk
• Engaging with senior leadership in the company to drive security initiatives forward as they align with our business goals

What You’ll Need:

• Strong Security Expertise: A deep understanding of software security, including familiarity with common vulnerabilities, threat vectors, and best practices 
• SaaS Security Knowledge: Specific knowledge of security challenges and solutions in the SaaS environment, including authentication, authorization, data encryption, and secure communication
• Security Frameworks and Tools: Knowledge of security tools, frameworks, and methodologies such as OWASP, NIST, CIS, and relevant security-related software and services to effectively protect Snyk's systems & services
• Cloud Security: Familiarity with cloud security concepts, including secure configuration, identity and access management, and data protection in cloud environments like AWS, Azure, or GCP
• Communication and Collaboration: Excellent communication and collaboration skills to work closely with cross-functional teams, articulate security risks, and promote a security-conscious culture throughout the organization
• Incident Response and Risk Management: Proficiency in developing and implementing incident response plans, risk assessments, and security policies to effectively mitigate threats and manage security incidents.
• Compliance Knowledge: Understanding of relevant industry and regulatory compliance standards (e.g., GDPR, HIPAA, SOC 2) to ensure Snyk's products and services can meet legal and industry-specific security requirements
• Continuous Learning: The ability to stay up-to-date with emerging security threats and trends through continuous learning, certifications, and participation in the security community.
• Problem-Solving Skills: Strong analytical and problem-solving capabilities to assess complex security issues and propose effective solutions
• Leadership and Project Management: The ability to lead security initiatives, manage projects, and coordinate with stakeholders to ensure the successful implementation of security measures
• Ethical Hacking and Penetration Testing: Knowledge of ethical hacking techniques and penetration testing to identify vulnerabilities and assess the effectiveness of security controls.
• Critical Thinking: A capacity for critical thinking and an ability to assess the broader impact of security decisions on the organization.
• Documentation Skills: You are the best at documenting security policies, procedures, and guidelines to ensure consistency and compliance across the organization
• Magnanimous: Be a magnet for those wanting to learn and grow their maturity in security and architecture. You should be the most approachable person in the company

We’d be Lucky if You: 

• Have experience working within the DevSecOps industry

#LI-TF1

We care deeply about the warm, inclusive environment we’ve created and we value diversity – we welcome applications from those typically underrepresented in tech. If you like the sound of this role but are not totally sure whether you’re the right person, do apply anyway!

About Snyk

Snyk is committed to creating an inclusive and engaging environment where our employees can thrive as we rally behind our common mission to make the digital world a safer place. From Snyk employee resource groups, to global benefits that help our employees prioritize their health, wellness, financial security, and a work/life blend, we aim to support our employees along their entire journeys here at Snyk.

Benefits & Programs

Prioritize health, wellness, financial security, and life balance with programs tailored to your location and role.

• Flexible working hours, work-from home allowances, in-office perks, and time off for learning and self development
• Generous vacation and wellness time off, country-specific holidays, and 100% paid parental leave for all caregivers
• Health benefits, employee assistance plans, and annual wellness allowance
• Country-specific life insurance, disability benefits, and retirement/pension programs, plus mobile phone and education allowances