Overview:

We are currently seeking an Enterprise Security Architect to help secure their 5000+ people call center and leading software systems and products. As a member of the security team, you will be part of the team responsible for designing, building and maintaining innovative security services and solutions that support the needs of our internal and external customers. You’ll be responsible and accountable for driving Application Security protection inside production Salesforce environments – both public cloud and data centers. This is a highly visible role that will work closely with client teams to drive an integrated solution and respond to incidents.

RESPONSIBILITIES

  • Design, architect, engineer, and operate ground breaking DDoS solutions to provide protection across multiple substrates
  • Partners with other engineering teams and executives to develop short and long-term security, product, and service strategies.
  • Collaborate with other teams to solve security problems with minimal disruption to other business functions.
  • Continuous improvement of policies, procedures, and technology.
  • Interact with industry experts, partners, internal staff, and auditors.
  • Work effectively as part of a geographically distributed team.
  • Occasional travel is required (domestic and international).

REQUIREMENTS

  • Industry experience. 10+ years in Infrastructure or Security Architecture (5+ years for SMTS), including: * 5+ years experience in networking, security, or DDoS. * 5+ years experience in a high-availability 24/7 environment – AWS/GCP
  • Sc/M.Eng in Computer Science/Engineering or B.A/B.Sc. in same fields with equivalent years of experience
  • Familiar with denial of service attacks, mitigation strategies, and industry standard processes
  • Familiar with OWASP top 10 vulnerabilities, CWE, and related countermeasures
  • Experience with log analysis and monitoring systems such as Splunk, ELK, Grafana, etc.
  • Hands-on experience designing and maintaining innovative distributed denial of service solutions for large scale networks
  • Hands-on experience designing and maintaining public cloud environments, networking and security controls
  • Networking (Security). Industry-level expertise in any of the following networking (security) aspects
  • Network security platforms, including segmentation, ACLs, DDoS protection. Examples include:
  • Software: iptables, ipsec, VPN, IPS/IDS, firewall management platforms, ACL compilers and tooling (Capirca)
  • Hardware: switch ACLs, stateful firewalls, network segmentation, security zones
    • VM and containers network stacks.
    • OSI model and debugging network traffic.
    • Networking protocols (TCP/UDP, BGP, DNS, DHCP)
    • Datacenter network architecture at software platform and hardware devices (NAT, VXLAN, overlay/underlay)
    • Network security architectures and implementations in public clouds (e.g., AWS, Azure, GCP)
    • Must be proficient in network architecture and design, network security and network monitoring
    • 4+ years Hands-on experience with one or more of Python, Go, Bash, JSON or Perl in order to push software and network interaction

DESIRED SKILLS

  • 5+ years of experience in Application Security or Security Architecture
  • Experience designing and deploying DDoS/WAF technologies within public cloud and first-party environments
  • Experience with content delivery networks such as Akamai, Cloudflare and Cloudfront.
  • Experience writing custom WAF rules targeted to attack traffic
  • Experience with application security testing through bug bounty programs, penetration testing, and red teaming exercises
  • Knowledge of Salesforce, Marketing Cloud, and/or Commerce Cloud application architecture
  • Well-versed in internet fundamentals, TCP stack, DNS and routing, communication protocols such as HTTP or TLS.
  • Prior understanding of Agile/Scrum methodologies
  • Experience with multi-tiered mission-critical systems
  • Solid hands-on technical background particularly in managing highly complex, multi-platform web applications.

Timings:
3pm to 11pm or overlap by US Business Hours

The CISO role is vital for ensuring the integrity, confidentiality, and availability of the organization’s information assets. The ideal candidate will be a visionary leader with a deep understanding of the cyber threat landscape and the ability to implement robust security measures in a constantly evolving environment.

Location: Islamabad - Onsite