Sr Principal, Software Engineering Security Architect
Arpatech
Medina
SAR 300,000 - 400,000
Job description
AspenTech is a global software leader helping industries meet the increasing demand for resources from a rapidly growing population in a profitable and sustainable manner. Our Digital Grid Management software suite, including AspenTech OSI products, helps power and utilities companies achieve superior real-time control, optimization and management for exceptional performance of complex energy networks.
The Role
We are seeking a highly skilled Software Architect specialized in all aspects of designing and implementing security solutions for commercial software. In this role, the individual will have a leading role in how our applications and solutions will conform to the security requirements of our customers across a variety of business domains including OT, IT, on-premise, cloud, and edge.
Your Impact
Your Impact
Oversee design and implementation of security and compliance aspects of AspenTech's software platform, including Identity Access Management (IAM), data protection, and threat management.
Understand and integrate various authorization models from existing products into a cohesive design for centralized services, ensuring alignment with industry standards.
Direct the work of Platform Development teams to ensure security measures are integrated across solutions.
Drive the implementation of security policies, standards, and procedures to ensure the platform’s integrity and confidentiality, collaborating with Product Security to align with and complement security objectives.
Collaborate with other Architects and Engineering teams to integrate security best practices into the Platform’s design and development.
Work with Product Security on security assessments and audits to identify vulnerabilities, ensuring compliance with industry standards and regulations.
Stay updated with the latest security trends, threats, and technologies to continuously improve the Platform’s security posture.
Collaborate with customer support and services teams on the integration of the platform security services with customer environments.
What You'll Need
Bachelor’s degree in computer science, Information Security, or a related technical field.
Proven experience designing and implementing security solutions in software solutions.
Proven experience of developing commercial software (good knowledge of C++, Java, C# desirable).
Strong knowledge of Identity Access Management (IAM), OIDC/OAuth, and Policy Based Access Control.
Strong knowledge of security frameworks and standards, such as NIST, ISO 27001, NERC CIP, CIS benchmarks, AWS cloud security practices, Azure Cloud Security Practices.
Experience with supply chain security, including securing supply chain processes, managing third-party risks, and ensuring compliance with relevant regulations and standards.
Experience with cloud-native technologies such as Docker and Kubernetes, including expertise in runtime security for Docker and control plane security for Kubernetes. Familiarity with tools related to policy enforcement, security monitoring, and compliance checks.
Familiarity with security technologies and tools, including firewalls, intrusion detection/prevention systems, and encryption.