Overview
On Site
USD 136,500.00 - 253,500.00 per year
Full Time
Skills
Cadence
FOCUS
Cloud Computing
Management
Information Security
Incident Management
Vulnerability Management
Application Development
Configuration Management
DevOps
Continuous Integration
Continuous Delivery
Enterprise Architecture
Computer Science
Educate
JIRA
GitHub
Perforce
GitLab
JFrog
Scripting Language
Python
Windows PowerShell
Linux
Unix
Microsoft Windows
Operating Systems
Cyber Security
OWASP
Security Controls
Web Applications
Web Services
XML
SOA
Ajax
JSON
Open Source
Operations Support Systems
SCA
Software Security
Testing
Security Architecture
Threat Modeling
WAF
Penetration Testing
Vulnerability Scanning
Web Application Security
Training
Instructional Design
Information Systems
CISSP
SANS
Amazon Web Services
Microsoft Azure
Google Cloud
Google Cloud Platform
Sales
Job Details
At Cadence, we hire and develop leaders and innovators who want to make an impact on the world of technology.
Cadence's Information Security team is seeking a Software Security Architect. This role will focus on Cloud and on-premise Software Security controls including WAF and CDN tools. Additionally, this is truly a Security Development Operations role that will ensure security tool integration at the source code repo, build, and artifactory level. As a member of the Information Security team, this role will Architect and lead the secure software develop life cycle, including DAST, SAST, SCA, penetration testing, and attack surface management.
This role will interface directly with development teams. Of course, there is broad exposure to other aspects of information security related tasks such as incident response, vulnerability management, and deployment of security solutions. The successful candidate for this position is a highly motivated individual with a strong Application Development and Configuration Management/DevOps background that wants to educate and build a software security program.
Key Deliverables and Responsibilities (include but are not limited to the following):
Deploy and automate security tools in the CI/CD pipeline.
Work closely with product teams to identify SBOM
Work with product teams in remediating software security vulnerabilities
Perform manual penetration tests on web applications
Attend enterprise architecture reviews to standardize and secure new deployments
Qualifications and Special Skills Required
Bachelor's degree in computer science or engineering field or equivalent combination of education and relevant experience.
A passion to learn and educate others on how to build secure software.
Ability to work in a group setting and independently
Experience with Jira IT ticketing systems.
Experience with GitHub, Perforce, GitLab
Experience with SonaType, JFrog
Good working knowledge in scripting language, Python, PowerShell, etc.
Strong understanding of Linux/UNIX and Windows based operating systems and networks.
Strong knowledge on Cyber security and CMMC
Strong working knowledge of Application security concepts and technologies such as:
Experience in OWASP Top 10 and usage of common AppSec testing tools.
Experience of Secure by Design concepts and threat modeling
Knowledge of common security libraries, security controls, and common security flaws.
Experience in application penetration testing techniques and tools
Knowledge of application technologies including Web applications, Web services, XML, SOA, AJAX, JSON, and Web scanning tools
Open-Source Security (OSS) - Software Composition Analysis (SCA)
Static Application Security Testing (SAST)
Dynamic Application Security Testing (DAST)
Security Architecture Review - Threat Modeling
AWS and Azure WAF Configuration and listing
Cloudflare DDOS configuration and operation
Manual Penetration Testing
Penetration testing with 3rd party vendors
Host level vulnerability Scanning
Web application security training course development and delivery
Preferred Certifications:
Certified Information Systems Security Professional (CISSP)
SANS GIAC certifications
Amazon Web Services, Azure, Google Cloud Platform
The annual salary range for California is $136,500 to $253,500. You may also be eligible to receive incentive compensation: bonus, equity, and benefits. Sales positions generally offer a competitive On Target Earnings (OTE) incentive compensation structure. Please note that the salary range is a guideline and compensation may vary based on factors such as qualifications, skill level, competencies and work location. Our benefits programs include: paid vacation and paid holidays, 401(k) plan with employer match, employee stock purchase plan, a variety of medical, dental and vision plan options, and more.
We're doing work that matters. Help us solve what others can't.
Cadence's Information Security team is seeking a Software Security Architect. This role will focus on Cloud and on-premise Software Security controls including WAF and CDN tools. Additionally, this is truly a Security Development Operations role that will ensure security tool integration at the source code repo, build, and artifactory level. As a member of the Information Security team, this role will Architect and lead the secure software develop life cycle, including DAST, SAST, SCA, penetration testing, and attack surface management.
This role will interface directly with development teams. Of course, there is broad exposure to other aspects of information security related tasks such as incident response, vulnerability management, and deployment of security solutions. The successful candidate for this position is a highly motivated individual with a strong Application Development and Configuration Management/DevOps background that wants to educate and build a software security program.
Key Deliverables and Responsibilities (include but are not limited to the following):
Deploy and automate security tools in the CI/CD pipeline.
Work closely with product teams to identify SBOM
Work with product teams in remediating software security vulnerabilities
Perform manual penetration tests on web applications
Attend enterprise architecture reviews to standardize and secure new deployments
Qualifications and Special Skills Required
Bachelor's degree in computer science or engineering field or equivalent combination of education and relevant experience.
A passion to learn and educate others on how to build secure software.
Ability to work in a group setting and independently
Experience with Jira IT ticketing systems.
Experience with GitHub, Perforce, GitLab
Experience with SonaType, JFrog
Good working knowledge in scripting language, Python, PowerShell, etc.
Strong understanding of Linux/UNIX and Windows based operating systems and networks.
Strong knowledge on Cyber security and CMMC
Strong working knowledge of Application security concepts and technologies such as:
Experience in OWASP Top 10 and usage of common AppSec testing tools.
Experience of Secure by Design concepts and threat modeling
Knowledge of common security libraries, security controls, and common security flaws.
Experience in application penetration testing techniques and tools
Knowledge of application technologies including Web applications, Web services, XML, SOA, AJAX, JSON, and Web scanning tools
Open-Source Security (OSS) - Software Composition Analysis (SCA)
Static Application Security Testing (SAST)
Dynamic Application Security Testing (DAST)
Security Architecture Review - Threat Modeling
AWS and Azure WAF Configuration and listing
Cloudflare DDOS configuration and operation
Manual Penetration Testing
Penetration testing with 3rd party vendors
Host level vulnerability Scanning
Web application security training course development and delivery
Preferred Certifications:
Certified Information Systems Security Professional (CISSP)
SANS GIAC certifications
Amazon Web Services, Azure, Google Cloud Platform
The annual salary range for California is $136,500 to $253,500. You may also be eligible to receive incentive compensation: bonus, equity, and benefits. Sales positions generally offer a competitive On Target Earnings (OTE) incentive compensation structure. Please note that the salary range is a guideline and compensation may vary based on factors such as qualifications, skill level, competencies and work location. Our benefits programs include: paid vacation and paid holidays, 401(k) plan with employer match, employee stock purchase plan, a variety of medical, dental and vision plan options, and more.
We're doing work that matters. Help us solve what others can't.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.