Senior Security Architect

KUBRA is seeking a highly skilled Senior Security Architect to design, implement, and oversee enterprise-grade security solutions across our cloud and hybrid environments.

Requirements

• Perform security architecture design reviews and provide recommendations to improve the security posture of KUBRA's application, database, and cloud platforms.
• Govern Watch over cloud security systems for change and configuration control thereby suggesting changes to further improve the overall security posture.
• Partner with DevSecOps, Application and Infrastructure teams to ensure any vulnerabilities or issues are resolved per security guidelines.
• Assist in developing an overall organizational data strategy that is in line with business processes and contractual requirements.
• Identify and provide guidance on appropriate controls based on industry standards to drive cloud and customer security solutions framework based on business risk and cloud native threats.
• Develop and implement cloud security architectures focused on AWS.
• Establish and enforce secure application development practices, including secure coding, threat modeling, SAST/DAST and vulnerability management.
• Conduct security assessments of cloud infrastructure, applications, and CI/CD pipelines.
• Provide security guidance and best practices to Product and Service Delivery teams.
• Define and implement security policies, standards, and procedures for cloud and application security.
• Work with engineering and operations teams to integrate security controls within cloud-native services.
• Lead security reviews, architecture assessments, and risk analysis for new and existing applications.
• Monitor security trends, vulnerabilities, and threats in cloud and application security domains.
• Collaborate with compliance teams to ensure adherence to regulations such as PCI-DSS, SOC 1/2, ISO 27001 etc.
• Respond to security incidents and provide expertise in forensic analysis and remediation.
• Design and implement network security controls, including firewall configuration and management.
• Manage firewall solutions such as Akamai and cloud-native security services to protect applications and infrastructure.
• Ensure robust network security by implementing intrusion detection/prevention systems (IDS/IPS), web application firewalls (WAFs), and DDoS mitigation strategies.
• Design and implement database security controls, including data encryption, access control, and monitoring.
• Conduct database vulnerability assessments and ensure compliance with security policies.
• Work with database administrators to apply security best practices to relational and NoSQL databases.
• Implement data masking, tokenization, and audit logging for sensitive data protection.
• Develop and implement Infrastructure as Code (IaC) security best practices to ensure secure provisioning and configuration of cloud resources.

Benefits

• Annual performance-based bonuses
• Generous benefit coverage with low premiums
• Healthcare Spending Account
• Wellness Spending Account
• RRSP matching
• Paid vacation and sick days
• Paid day off for birthday
• Paid volunteer days
• Free access to LinkedIn Learning
• Education reimbursement program
• Employee recognition programs
• Premium Headspace membership
• Unlimited access to beverage stations
• Exclusive Perkopolis retail discounts