Devsec Ops Architect

**About the role**:
A Product Security Architect is responsible for ensuring the security of products developed by Cyberhaven. With a demonstrable background in cloud-native design, implementation and operation their primary job is to identify potential security vulnerabilities in the product and develop strategies to mitigate them. They work closely with Engineering teams to ensure that security is built into the product from the ground up.

We are looking for someone with an engineering background who thrives in a fast-paced environment and is comfortable reducing risk through both strategic design coupled with hands-on technical remediation.

**What you'll do**:

- Designing and implementing secure architectures for Cyberhaven production services
- Conducting security assessments and threat models of products, environments and code to identify potential vulnerabilities
- Identify and manage technology risks across Cyberhaven’s production environments, ensuring treatment plans are agreed upon by the security and engineering teams.
- Documenting and implementing security procedures
- Providing guidance and training to Engineering teams on best practices for security

**Who you are**:

- Ability to perform threat modeling using a variety of risk tools and methods
- Demonstrable experience with integrating tooling into build pipelines: source code management, dependency management, SAST/DAST tooling
- An engineering mindset and a deep understanding of securing backend technologies
- Experience writing technical documentation including roadmaps, patterns and architecture blueprints
- Experience with defining requirements for security, aligned with business and product development priorities
- Hands-on experience designing and implementing least-privilege models for systems access
- Hands-on experience with security automation, scripting and infrastructure as code skills
- Microservices security experience: Kubernetes good practice and API security
- 3+ years of designing solutions for highly-regulated environments

**What you can count on**:

- Competitive salary and stock options
- Health benefits - 100% paid for you and your family
- Flexible time off (paid)
- Career advancement opportunities

At Cyberhaven, we've raised over $52M from leading Silicon Valley investors (Vertex, Costanoa and Redpoint). Cyberhaven is also backed by founders, executives, and security leaders who have built transformational technologies at Nutanix, Palo Alto Networks, Facebook, Google, Slack, Akamai, Cloudera, AsterData and others. We have strong demand for our product from the world’s largest companies and we are growing fast.

Cyberhaven is committed to creating a diverse environment and is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.