Security Architecture
4 miesięcy temu
Business Unit Overview
Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has global presence across the Americas, APAC, India and EMEA. Within Technology Risk, Advisory is the consultative and technology subject matter expertise arm, responsible for assessing new technology initiatives for risk, partnering with engineers to architect and design secure products and services, embedding implementation reviews as part of the SDLC and CI/CD pipeline via code analysis and penetration testing, and guiding technology innovation in terms of security and control across Goldman Sachs. The team plays a critical role in designing and assessing controls for our transition to building native public cloud applications.
Role
In this role, you will join one of the most progressive Technology Risk teams in the industry which continues to push the development of risk in preference to security within technology and the business. You will collaborate with technology teams on both in house projects and external cloud adoptions to deliver secure products and solutions.
RESPONSIBILITIES AND QUALIFICATIONS
Job responsibilities:
Work with various teams to understand design proposals and evaluate risk Design secure patterns and produce guidance to reduce risks through opinionated architecture Develop policy as code, templates and modules to implement and enforce secure patterns and guidance Validate security controls and uncover misconfigurations across various cloud deployments Research and conduct proof of concepts for new tools & solutions improving the security posture Review impact of SaaS applications and systems on existing core infrastructure, and provide recommendations for secure implementation Perform infrastructure as code reviewsBasic Qualifications:
Minimum 7 years’ experience in one or more infrastructure technical role (focusing in either Network, Windows or Linux platforms) with 3-5 years working with major cloud solutions (IaaS, PaaS, SaaS) Deep knowledge of TCP/IP stack, application and infrastructure protocols Must have a high level understanding of security risks as they apply to cloud and on-premise solutions Preferred risk knowledge domains include network segregation, data protection, infrastructure managementPreferred Qualifications:
Hands on experience with at least one Cloud Service Provider, AWS preferred Understand of Software Supply Chain Risk or SaaS risk Understanding of Infrastructure as Code, Policy as Code, templates and modules Bachelor of Science in Computer Science, Cyber-Security, or Information Security Experience or trainings in related disciplines . computer security, network security, cloud security What We Do At Goldman Sachs, our Engineers don’t just make things – we make things possible. Change the world by connecting people and capital with ideas. Solve the most challenging and pressing engineering problems for our clients. Join our engineering teams that build massively scalable software and systems, architect low latency infrastructure solutions, proactively guard against cyber threats, and leverage machine learning alongside financial engineering to continuously turn data into action. Create new businesses, transform finance, and explore a world of opportunity at the speed of markets. Engineering, which is comprised of our Technology Division and global strategists groups, is at the critical center of our business, and our dynamic environment requires innovative strategic thinking and immediate, real solutions. Want to push the limit of digital possibilities? Start here.Who We Look For Goldman Sachs Engineers are innovators and problem-solvers, building solutions in risk management, big data, mobile and more. We look for creative collaborators who evolve, adapt to change and thrive in a fast-paced global environment. ABOUT GOLDMAN SACHS At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at /careers.
We’re committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process.
-
Security Architect
4 miesięcy temu
Warsaw, Polska Endava Pełny etatInfrastructureWarsaw What's this role about? Specify and design secured by default applications, services and tools Review Architecture to ensure secure by design by default Conduct comprehensive risk assessments of applications, services and tools Proactively identify security risks, mitigations, and opportunities to strengthen Endava and our...
-
Security Architect
4 tygodni temu
Warsaw, Polska BEC Poland Pełny etatWe are searching for a Security architect For this role, we are looking for someone to join Nykredit – one of the banks BEC Poland works closely with. Nykredit is both a bank and a mortgage provider owned by an association of customers. Being customer-owned, they are in a unique position to give something back to their customers when they are doing well....
-
Security Architect
2 miesięcy temu
Warsaw, Polska ING Bank Śląski S.A. Pełny etattechnologies-expected : Microsoft Azure Google Cloud Platform about-project : Join our security architecture team and work with vendor and supplier management for security aspects, including contract negotiations. You will enforce of security measures within the IT solutions on all levels from network to front-end and business processes. In this position...
-
Senior Security Engineer
3 miesięcy temu
Warsaw, Polska Appfire Technologies, LLC Pełny etattechnologies-expected : Python Linux SQL about-project : Appfire is seeking a highly skilled Senior Security Engineer to join our Appfire Information Security team. This Senior Security Engineer role will report to our CISO and work within our Security Engineering & Architecture team to handle diverse security engineering and architecture related tasks for...
-
Security Architect
4 miesięcy temu
Warsaw, Polska Dentons Pełny etatDentons is the world's largest law firm, renowned for its commitment to delivering innovative legal solutions to clients around the globe. With offices in over 160 countries and a team of legal professionals dedicated to excellence, Dentons offers a dynamic and inclusive work environment. Dentons Business Services EMEA: Dentons Business Services EMEA is...
-
Security Engineer
1 tydzień temu
Warsaw, Polska The Stepstone Group Pełny etatJob Description Your responsibilities CI/CD Integration: Develop and integrate security tools into our CI/CD pipelines to automate security testing, code analysis, and vulnerability scanning throughout the development lifecycle. Threat Modeling Automation: Create and maintain automated threat modeling processes to identify and assess potential...
-
Security Architect Greenfield Project
4 tygodni temu
Warsaw, Polska Infotree Global Solutions Pełny etatAs a Security Architect, you will play a key role in our client’s “Cloud First” strategy, creating concepts and designs of highly complex cloud solutions to enhance the security of the cloud infrastructure.You will challenge existing solutions to bring them to the next level and will lead the conception of entirely new and game-changing solutions.To...
-
Application Security Engineer
4 dni temu
Warsaw, Polska The Stepstone Group Polska sp. z o.o. Pełny etattechnologies-expected : Python Bash AWS Microsoft Azure Google Cloud Platform about-project : As an Application Security Engineer, you will play a pivotal role in safeguarding our organization's applications and data. You will work closely with development teams to integrate security tools into our CI/CD pipelines, ensuring that security is baked into the...
-
Lead Security Architect
2 tygodni temu
Warsaw, Polska emagine sp. z o.o. Pełny etattechnologies-expected : Active Directory AWS Microsoft Azure Google Cloud Platform about-project : Industry: IT Location: 100% Remote (Possibility to work in Warsaw office) Rate: up to 230 PLN/h Contract period: 12 months + possible extension Assignment type: B2B responsibilities : We are looking for new team members with aim to define vision, lead and...
-
Application Security Engineer
4 dni temu
Warsaw, Polska XPERI Poland Pełny etattechnologies-expected : C Java responsibilities : Collaborate with Development and Operation Teams to build and operate secure products. Maintain the trust of Customers by protecting sensitive data and protecting the Organization from breaches. Conduct Security reviews and Threat Modeling. Help integrate security tools and processes. Respond to Security...
-
Senior Information Security Specialist
1 miesiąc temu
Warsaw, Polska Huuuge Games Sp. z o.o. Pełny etatabout-project : We’re looking for a Senior Information Security Specialist. Someone who would develop and maintain a set of security standards and best practices as well as recommend security enhancements. Knows how to respond and recover from a security incident. Finally got skills to enlighten and encourage people with security. Do you like what you are...
-
IT Security Architect
4 miesięcy temu
Warsaw, Polska DSV Pełny etatTime Type: Your responsibilities: • Develop and maintain comprehensive security architecture blueprints, ensuring alignment with business goals and compliance requirements.• Evaluate existing security measures and recommend enhancements to protect against emerging threats.• Provide expert advice on security best practices, risk management, and...
-
Cloud Security Expert
3 miesięcy temu
Warsaw, Polska T-Mobile Polska S.A. Pełny etatOpis stanowiska: · Responsibility for the public and private cloud security · Enhance cloud security posture · Evaluate and improve cloud security architecture · Consult on cloud security mechanisms · Evaluate changes to the cloud from the security point of...
-
Cloud Security Expert
3 miesięcy temu
Warsaw, Polska T-Mobile Pełny etattechnologies-expected : AWS Azure O365 Tanzu VMWare Java about-project : Joining Security Tribe will offer you space for professional and personal development! You will be responsible for the security of a company of strategic and defense importance. You will join a team that is eager to share knowledge and counts on you to do the same. responsibilities...
-
Principal/Senior Anti-Abuse Security Engineer, Product Security
3 miesięcy temu
Warsaw, Polska Snowflake Pełny etatBuild the future of data. Join the Snowflake team.The Anti-abuse team at Snowflake is responsible for protecting Snowflake and our customers from abuse on the Snowflake platform. You will have the opportunity to help set the direction for the anti-abuse roadmap and technical direction at Snowflake. Weâre at the forefront of the data revolution,...
-
Principal/Senior Anti-Abuse Security Engineer, Product Security
3 miesięcy temu
Warsaw, Polska Snowflake Pełny etatBuild the future of data. Join the Snowflake team. The Anti-abuse team at Snowflake is responsible for protecting Snowflake and our customers from abuse on the Snowflake platform. You will have the opportunity to help set the direction for the anti-abuse roadmap and technical direction at Snowflake. We’re at the forefront of the data revolution,...
-
Application Security Expert
3 miesięcy temu
Warsaw, Polska T-Mobile Polska S.A. Pełny etatOpis stanowiska: · Identify opportunities to automate and standardize application security controls and cooperate with the CICD team · Analyze source code to mitigate identified weaknesses and vulnerabilities · Create guidelines and application security standards · Review and check...
-
Network Security Architect
4 tygodni temu
Warsaw, Polska Bosch Group Pełny etatJob DescriptionWe are seeking a talented and experienced Network Security Architect to join our team at Bosch. The ideal candidate will be responsible for taking Bosch's global internet connectivity to a new level while considering demanding security requirements. You will work closely with a team of highly qualified network and security experts on strategic...
-
Network Security Architect
4 tygodni temu
Warsaw, Polska Robert Bosch Sp. z o.o. Pełny etatabout-project : We are seeking a talented and experienced Network Security Architect to join our team at Bosch. The ideal candidate will be responsible for taking Bosch's global internet connectivity to a new level while considering demanding security requirements. You will work closely with a team of highly qualified network and security experts on...
-
Network Security Architect
4 tygodni temu
Warsaw, Polska Bosch Pełny etatJob Description We are seeking a talented and experienced Network Security Architect to join our team at Bosch. The ideal candidate will be responsible for taking Bosch's global internet connectivity to a new level while considering demanding security requirements. You will work closely with a team of highly qualified network and security experts on...