[Remote] Sr Application Security Architect

Note: The job is a remote job and is open to candidates in USA. Datavant is a data platform company and the world’s leader in health data exchange. As a Sr Application Security Architect, you will shape the security posture of products and services, lead secure architecture reviews, and provide expert guidance on risk mitigation while collaborating with engineering and compliance teams.

Responsibilities

• Work directly with security senior leadership to ensure maturity, depth, and coverage of security controls. You’ll be expected to interface with our Development Engineering leadership as well as Security Engineering leadership daily
• Help facilitate quarterly planning discussions by providing strategic prioritization of all security-related requests, including (but not limited to) architectural feedback, vulnerability remediation, compliance control implementation, etc
• Be fearless in security control descriptions and writing process related elements down. The processes you build are not a castle of tone deaf documentation but a method of enabling development teams to move faster with more clarity
• Review application projects our development teams build. This will mean putting eyes on code through secure code reviews as well as working with the teams to understand the broad architecture of systems being built. You’ll be very comfortable providing control feedback in a review environment to development teams. This role is not merely a +1, you’ll be adept at using your knowledge to the application of practical risk management
• Own and conduct security/threat model reviews and provide expertise on security architecture-related topics
• Own new projects for advancing security in our environment. Be the deep technical expert and collaborate with others on the teams to ensure project success. Your impact here cannot be understated, you are a core contributor and have deep influence to empower Datavant greatness

Skills

• Hands-on experience developing in multiple programming languages
• Strong command of programming and can quickly adapt to new technologies as needed
• Deep understanding of Application and Cloud security
• Strong understanding of security controls, both those that exist in audit standards as well as practical controls that can help reduce risk and increase safety in application development environments and AWS and/or Azure
• Understanding of how the broad parts of a security team function and operate in unison
• Ability to articulate start to finish what role security should play in ideation and build with development teams
• Consummate collaborator
• Ability to understand the tradeoffs between ideal security and what is necessary to appropriately secure a legacy system
• Heavily focused on delivery and being impactful
• 6+ years of working in architectural and threat modeling review areas
• 6+ years of working with compliance standards
• Ability to handle broad scoped projects and get things done fast with limited dependencies
• Experience with security in healthcare or other highly regulated space. Examples: HIPAA, HITRUST, SOC 2, PCI, FedRamp experience from an operational response standpoint

Company Overview

• Datavant protects, connects, and delivers the world’s health data to power better decisions and advance human health. It was founded in 2017, and is headquartered in Phoenix, Arizona, USA, with a workforce of 5001-10000 employees. Its website is https://datavant.com.

Apply tot his job Apply To this Job