Security Architect (Poland remote)

Warsaw

NordVPN – Cyber Security - NordVPN /

Full Time /

Remote

Drive the decision-making process for technical designs by providing security recommendations and risk mitigation strategies
Define general and feature-specific security requirements
Conduct threat model sessions and perform risk assessments of any product change that may impact security
Consult developers on security architecture and cryptography-related concerns
Research new security concepts and translate them into actionable design descriptionsMaintain constant communication with stakeholders and push the security agenda
Design and deliver training for security engineering awareness and adoption
Actively look for internal security gaps within the product or organization

Ability to enhance and propose software design descriptions with a focus on security
Sense of ownership with strong problem-solving and investigation skills;
Excellent communication and presenting skills; able to concisely communicate security risks to both technical and business audiences both verbally and in writing
Ability to quickly assimilate new technologies and tools;
Bonus points for community contributions like public CVEs, bug bounty recognition, open-source tools, blogs, etc.
In-depth knowledge of one or more of the following topics:
Cryptography
Network Security (Design of P2P, Firewalls, IPv6)
Security of Mobile / Desktop Application
Open Authorization and OpenID Connect (OIDC)
Secure Backend Architecture (Zero trust environments, KMS, IAM)
Web Security (API Security, Web Application Security, Securing Browser Extension)