Sr. Security Architect
Named one of Austin’s fastest-growing companies and one of the best places to work for 10 consecutive years, Q2 offers our employees a culture fueled by engaged, motivated, and dedicated team members. We’re dedicated to our mission: to build strong and diverse communities by strengthening their financial institutions. We do it with our purpose-driven culture, and by helping banks and credit unions stand apart in their communities.
We are a high growth company, experiencing rapid growth of 30% year over year, laser focused on Innovation and Scale in a highly competitive Fintech market; Infrastructure and Security are mission critical components of our success. The person in this role will help us mature our cloud security posture while playing a key role in evangelizing our progress to both internal stakeholders and external Fintech clients. As a result, we are looking for a strong and driven Senior Security Architect. The Security Architect will be securing innovative products that scale to 800+ financial services customers. You will interact with stakeholders across Engineering, QA, DevSecOps, Operations, and Product Management.
Do you enjoy working in a highly collaborative and fast paced environment? Do you approach every day with passion to build highly scalable, resilient, and secure products? Do you possess expertise in infrastructure and security experience and a passion for both? Are you willing to roll-up your sleeves and be hands-on? Do you have the ability to think strategically about business, compliance and technical challenges in a rapidly growing company? If you can say yes to these questions, we want to talk to you!
If you were already working for us, here is what you would be doing:
- Designing and implementing public cloud security architectures in AWS, Azure, and on-premise datacenters with a focus on designing for future or emerging security threats
- Designing and implementing security controls that support NIST, SOC2, and PCI frameworks
- Delivering strategic and tactical security guidance for IT and engineering initiatives
- Reviewing and critiquing security designs and implementations as part of design reviews
- Identifying problem areas and bringing multiple solutions to the table while educating stakeholders on the possibilities
- Incorporating security products and processes into existing and new systems.
- Embedding security controls within Engineering and DevSecOps deployment pipelines (e.g., build automation and configuration management)
- Ensuring that all security, availability, confidentiality and privacy policies and controls are adhered to
What you will need to be successful in this role:
- 5 + years’ experience in infrastructure that includes a focus on security and compliance Extensive experience in information security and/or IT risk management with a focus on security, performance, and reliability
- The ability to think strategically about business, product, and technical challenges
- Embrace ambiguity and demonstrate the ability to be highly resourceful
- Hands-on engineering expertise in modern public cloud platforms (Azure, AWS)
- A strong background in Linux and Windows System Administration
- A strong understanding of Networking principals and routing protocols
- Experience with Infrastructure as Code (IaC) software such as Terraform, Cloud Formations, Azure Resource (ARM) Templates
- Experience witih configuration management platforms (Ansible, Chef, and/or Puppet)
One or more of the following certifications:
- Azure/AWS Security Engineering or Solutions Architect Certification
- CISSP-ISSEP: Information Systems Security Engineering Professional
- CISSP-ISSAP: Certified Information Security Architect Professional
- SANS GIAC Cloud Security
At Q2, our goal is to be a diverse and inclusive workforce that fosters mutual respect for our employees and the communities we serve. Q2 is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.