Job Description and Requirements
Information Security ArchitectJob Responsibilities:The Synopsys Information Security team helps organization transform and securely build what's next for the business.
Synopsys is seeking an Information Security Architect, Enterprise, Cloud & Product Security, to support the Information Security team who is responsible for the overall security of the company's products and ensuring that security is integrated into all aspects of product design, development, and delivery. In this key leadership role, the Information Security Architect will report to the CISO.
Key areas will include Security architecture, design, security reviews, security testing, security automation, security research & development, and managing the secure software development lifecycle and associated controls to create and implement a comprehensive security strategy for the company's products.
This role guides and defines overarching technical product security strategies, across the core Synopsys Cloud Products and public cloud partners, AWS, Azure, Google Cloud and Alibaba Cloud. This role understands customer and market requirements, to ensure Synopsys Cloud solutions are designed and implemented to the highest security standards and are differentiated in the marketplace.
The Security Architect will demonstrate executive level qualities, lead the conversation. Collaborate closely with CISO, many diverse and dynamic teams, including, but not limited to, security engineering, IT infrastructure, application development, product engineering, security operations, security audit, end users and stakeholders across the organization to articulate and design secure platforms and infrastructure, with expertise in cloud, enterprise, and infrastructure security best practices.
Responsible for defining a security innovation vision, and framework to help inform the security organization on new industry trends and security solutions that solve complex problems and align with the enterprise architecture strategy, technology and platform choices.
Job Requirements:
- Build an advisory relationship and engage with Engineering, Operations, Chief Information Security Office, Core Engineering, Product Development, and Chief Information Officer (CIO) teams.
- Responsible for leading a team of Cloud Security Architecture team in the development and maintenance of cloud security.
- Identify organization priorities, technical objections, and design strategies encompassing the entire Synopsys ecosystem to deliver business value and resolve blockers.
- Provide domain expertise around public cloud and enterprise technology.
- Make recommendations on integration strategies, enterprise architectures, platforms, and application infrastructure required to implement a complete solution.
- Leading security strategy plans and roadmaps based on sound enterprise architecture practices.
- Deliver threat modeling with tangible outputs of risks and design recommendations of sensitive and complex programs and ecosystems - partnering with program, technology, and 3rd party teams.
- Review security technologies, tools and services, and makes recommendations to the broader security team for their use, based on security, financial and operational metrics.
- Lead the Cloud infrastructure security program and mentor other cloud security engineers.
Qualifications: - Bachelor's or master's degree in computer science, information systems, cybersecurity or a related field from an accredited institution, or equivalent practical experience.
- Ten (15) years of experience in hands-on technology implementation across a heterogeneous landscape of technology
- Ten (10) years of experience providing security architecture responsibilities in an enterprise international organization.
- Direct, hands-on experience or strong working knowledge of managing security in software development, IoT /connected devices, infrastructure applications, cloud, security operations.
- Comprehensive experience with Azure, GCP, AWS and Alibaba cloud providers and their capabilities.
- Familiarity with developing tools/utility for end-to-end automation and CI/CD.
- Experience implementing Security Software Development Lifecycle programs (SSDLC) including leading security champion and BISO programs.
- Ability to draft project plans for security service and technology deployments and coordinate with stakeholders across the organization.
- Experience with structured enterprise architecture practices, hybrid cloud deployments, and on-premises-to-cloud migration deployments and roadmaps.
- Ability to deliver results, work cross-functionally, engage/influence audiences and identify expansion engagements.
- Familiarity with the following industry frameworks & regulatory standards: TOFAG, ISO27001, FedRamp, General Data Protection Regulation (GDPR), Privacy Practices, NIST Cybersecurity Framework (CSF/800.53), FedRamp, StteRamp, IEC 62443
- Relevant certifications such as CISSP, TOGAF, CISA, CISM, CRISC preferred.
Work location: Austin TX, RTP, NC, On site, or hybridTravel: May include up to 10% domestic/internationalThe base salary range across the U.S. for this role is between $155,000-$270,000. In addition, this role may be eligible for an annual bonus, equity, and other discretionary bonuses. Synopsys offers comprehensive health, wellness, and financial benefits as part of a of a competitive total rewards package. The actual compensation offered will be based on a number of job-related factors, including location, skills, experience, and education. Your recruiter can share more specific details on the total rewards package upon request.