Senior Application Security Architect
Overview

Prometheum is building the first compliant ecosystem for digital asset securities (DAS). DASs can be created on our network when a company raises capital via Prometheum’s issuance platform. Those assets (as well as other compatible assets) can be freely traded on our ATS (a trading venue), where our technology integrates with clearing, settlement and custody via the Prometheum blockchain technology.

Responsibilities
  • Maturing the Application Security program and associated processes.
  • Defining application security standards and security testing standards.
  • Assist in driving the strategic direction of the DevSecOps Program framework through partnerships with engineering, operations, and the business
  • Assist in defining KPI’s for the Application Security Program and advance the Application Security Program maturity and DevSecOps program efficiencies..
  • Threat modeling and risk analysis of applications and back-end components.
  • Application Security testing, risk analysis reporting, and mitigation plan development.
  • Deep understanding of offensive security and tool capabilities for assessing Web apps, mobile apps, api’s, and infrastructure.
  • Application Security Vulnerability Management Program.
  • Provide detailed technical reporting of security assessment results and mitigation strategies.
  • Ability to identify and recommend compensating controls to reduce risk of specific vulnerabilities.
  • Participate in the evaluation and selection of vendors, security tools, and risk reporting systems.
  • Knowledge and understanding of the OWASP SAMM, the BSIMM, and other similar Application Security frameworks and align the AppSec program accordingly.
Qualifications
  • Strong application security background with a focus on providing practical technical guidance to engineering teams.
  • You have experience with threat modeling, security design reviews, security architecture, pentesting and bug bounty handling.
  • Evidence structure in thinking, design process (i.e. requirements, solutions, design, implementation)
  • 10+ years of relevant experience (5+ in cloud technologies)\
  • Ideally candidate who has worked for a similar organization, with 5+ years of experience as application security consultant / security architect, with expertise in application security, cloud security, and Blockchain projects
  • Strong knowledge of Blockchain and Smart Contract security
  • Thorough understanding of industry and corporate technology standards for Cybersecurity and specifically, Application Security.
  • Demonstrated ability to take ownership and work with cross functional teams to manage multiple projects simultaneously under pressure.
  • Advanced analytical and problem-solving skills.
  • Consistently demonstrates clear and concise written and verbal communication as well as presentation skills for interaction with Sr leaders in Technology and business.
  • Proficient in interpreting and applying policies, standards, and procedures.
  • Demonstrated ability to collaborate with a variety of analytical groups and service delivery organizations.
  • Demonstrated ability to remain unbiased in a diverse working environment.
  • Bachelor's degree/University degree or equivalent experience

Salary Range: $175,000 - $225,00

Apply for this position

Prometheum is an equal opportunity employer.