Sr. Staff Cloud Security Architect
27197BR
USA - Oregon - Hillsboro, USA - Texas - Austin, USA - Virginia - Dulles
Synopsys technology is at the heart of innovations that are changing the way we work and play. Autonomous vehicles. Artificial intelligence. The cloud. 5G. These breakthroughs are ushering in the era of Smart, Secure Everything-where devices are getting smarter, everything's connected, and everything must be secure.

Powering this new era of digital innovation are advanced silicon chips and exponentially growing amounts of software content-all working together, smartly and securely. Synopsys is at the forefront of Smart, Secure Everything with the world's most advanced technologies for chip design and verification, IP integration, and software security and quality testing. We help our customers innovate from silicon to software so they can deliver Smart, Secure Everything. If you share our passion for innovation and meet the position requirements, we want to meet you.

The Synopsys Information Security team is expanding and searching for a Sr. Staff Cloud Security Architect who will own the end to end design of complex, integrated, enterprise security solutions and deep integrations. You will have a keen focus on solving business problems by designing a well architected, scalable, and extensible solution.
This position is a key senior individual contributor role in our Information Security team supporting IT to deliver solutions to many different business organizations within Synopsys.
As an individual contributor, you will be responsible for gathering business and technical requirements from our internal customers to design and help deliver secure solutions.
The ideal candidate will
- Demonstrate experience performing security design review of distributed systems and APIs
- Have served as a cloud security SME for high visibility cloud initiatives
- Have created security reference architecture for multi-tenant cloud initiatives
- Have detailed knowledge of cloud computing operations (SaaS, PaaS and IaaS) and how to secure them
- Translated and apply compliance and security requirements into solutions
- Demonstrated ability to collaborate with engineers to identify tradeoffs of different solutions and recommend the ideal design to meet security requirements
- Have experience in secure development especially in large, complex system environments
- Have a deep understanding and experience securing CI/CD pipelines
- Have a strong grasp of the shared responsibility model of cloud computing
Key Responsibilities
- Responsible for the end-to-end security architecture for cloud solutions involving multiple public cloud stacks (e.g. AWS, GCP, Azure) and internal cloud platforms
- Responsible for delivering the detailed security architecture and design artifacts
- Work closely with the security and IT domain architects to ensure that platform specific solutions meet the needs of all functional, security requirements and architecture design
- Communicates best practices and lessons learned and continuously updates the technical security architecture based on changing technologies in collaboration with other domains security architects
- Recommend and design the implementation of standards, tools, and methodologies
- Assists with project level of effort estimations
- Recommends and participates in 'Proof of Concept' meetings required to investigate technical possibilities to meet business needs
- Develops security strategy and roadmaps to create technical solutions
- Researches and keeps current on latest cloud security design patterns and cloud products
- Ability to communicate and work seamlessly in a global team
- Work with multiple multi-functional teams to support releases of varying size, complexity, and duration Qualifications
- Deep knowledge of cloud operational models and secure SaaS/PaaS/IaaS architectures in a world of containerized microservices
- Experience with Docker and Kubernetes
- Experience in applying security to cloud technologies (Data Encryption, Securing CI/CD pipeline, Secure Infrastructure as Code, Container Security, IAM)
- Knowledge of primary AWS services (EC2, ELB, RDS, Route53, S3, Lambda, EKS) and IAM implementation
- Expertise in cloud architecture and security fundamentals including containers, software-defined networks, high availability design, multicloud , and serverless compute
- Knowledge of serverless computing/functions and how to protect them
- Hands on experience in driving end to end security for cloud product - SAST, DAST, IAST, OSS scanning, security unit testing, and pen testing
- Working experience in implementing security tooling in public cloud environment - SIEM, vulnerability and threat management, IDS, container workload protection, DLP, etc.
- Expert in threat modeling and secure architecture review
- 10+ years total experience and 4+ years in Cloud Security
- Presenting security risks to wide audience including senior management
- Familiarity with BeyondCorp or similar zero trust security models Desired Skills
- Experience designing and building security services in a SecDevOps cloud operations model
- Knowledge of compliance requirements for industry standard certifications such as PCI DSS, SOC2, HIPAA, ISO-27001, FedRAMP
- OWASP Top 10 web application security risks and remediationsInclusion and Diversity are important to us. Synopsys considers all applicants for employment without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, military veteran status, or disability.
Job Category
Engineering
Hire Type
Employee
Country
United States
.