Sr Security Architect
Bloom Energy · San Jose, CA · 1 wk ago
Information Technology$179k–$257k/yrFull-time
Responsibilities
- Security Architecture Design: Develop and implement robust security architectures for enterprise-level systems, ensuring alignment with business objectives and regulatory requirements.
- AI Security: Define security controls for LLMs (Large Language Models), GenAI platforms, AI APIs, and Agentic AI. Embed security into MLOps pipelines (DevSecOps for AI). Design secure architectures for AI/ML systems, including model training, inference, and deployment pipelines. Protect against model theft and extraction attacks. Implement model monitoring for drift, anomalies, and abuse. Ensure secure model storage, versioning, and access control.
- Policy Development: Create, update, and enforce security policies, standards, and procedures to protect the organization's information assets.
- Risk Management: Conduct comprehensive risk assessments and vulnerability analyses to identify potential security threats and develop mitigation strategies.
- Collaboration: Work closely with IT, development, and business teams to integrate security measures into all aspects of the organization, including software development, network infrastructure, and cloud services.
- Incident Response: Assist SOC team with incident response efforts, providing expertise during security breaches and ensuring effective resolution and documentation.
- Continuous Improvement: Stay updated on the latest security technologies, trends, and threats, and recommend improvements to enhance the organization's security posture.
- Mentorship: Mentor and guide junior security team members, fostering a culture of continuous learning and professional development.
Requirements
- Educational Background: Bachelor's degree in engineering, Computer Science, Information Technology, or a related field.
- Experience: Minimum of 12+ years of experience in security, with at least 3 years in architect or equivalent role.
- Technical Proficiency: Strong knowledge of security frameworks (e.g., NIST, ISO 27001) and proficiency in security technologies such as firewalls, web proxy, intrusion detection/prevention systems, SASE, Secure Browser, XDR, DLP, CASB, CNAPP, IAM.
- Cloud Security: Experience with cloud security (AWS, Azure) and understanding of cloud-native security practices.
- Zero Trust Security: Proficiency in designing and implementing Zero Trust security models, including secure network strategies, strong authentication policies, and risk management frameworks.
- Cyber Resiliency: Expertise in building cyber resiliency, including developing incident response plans, conducting threat intelligence analysis, and ensuring business continuity during and after cyber incidents.
- Network Security: Strong understanding of network protocols, secure network architecture, and experience with configuring and managing firewalls, intrusion detection systems, and encryption solutions.
- Identity and Access Management (IAM): Expertise in IAM principles and best practices, including user identity management, role-based access control (RBAC), single sign-on (SSO), multi-factor authentication (MFA), and identity governance.
- Data Security: Proficiency in data security strategies, including data encryption, data loss prevention (DLP), secure data storage, and data integrity measures.
- Endpoint Protection: Proficiency in endpoint protection strategies, including anti-malware solutions, host-based intrusion detection systems (IDS/IPS), endpoint hardening, and mobile device management.
- Problem-Solving Skills: Excellent analytical and problem-solving skills, with the ability to work under pressure and handle complex security issues.
- Communication Skills: Strong communication and leadership skills, with the ability to effectively convey security concepts to both technical and non-technical stakeholders.
Benefits
- Bloom Energy makes reasonable accommodations, consistent with applicable laws, for the known physical or mental limitations of an otherwise qualified applicant or employee with a disability, who can perform the essential job functions, unless undue hardship would result.
- The total compensation for this position includes standard company benefits and is based on various factors including, but not limited to, relevant skills and experience.
- Salary Ranges: $178,800.00 - $257,200.00