We are looking for an experienced Application Security Architect to join our team at EPAM.

This role will be pivotal in working alongside one of our major clients in the Hospitality and Tourism sector. The ideal candidate will oversee Security Audits, spearhead the PCI certification process, establish secure software development lifecycle programs, provide guidance to development teams, and facilitate the integration of security practices in project architecture and design.

Responsibilities

• Oversee Security Audits at various stages such as Architecture, Process, Risk, and Testing
• Manage the coordination for the annual PCI certification process involving EPAM, the client, and QSA
• Initiate and implement secure software development lifecycle programs
• Guide development teams through the implementation of secure development methodologies, tools, and processes
• Deliver training on secure development practices to Software Development teams
• Develop secure project architectures and designs
• Communicate the importance of secure software development life cycles to both clients and internal teams
• Collaborate with sub-teams including BAs, Developers, and QAs to ensure a unified approach to security requirements
• Facilitate coordination and communication with various Security Teams like Cloud Security Engineers and Penetration Testers

Requirements

• 5+ years of IT experience
• 2+ years in senior roles such as Senior, Lead, Manager, or Owner
• Proven experience in leading teams of 5 or more full-time employees
• Understanding of security methodologies and comprehensive knowledge of security threats and preventive measures
• Proficiency in using and describing Threat Modeling tools
• Experience with tools in categories such as Static Code Analysis, Application Security Testing, and Intrusion Detection/Prevention
• Knowledge of integrating security measures into development processes including securing requirements gathering and risk assessment processes
• Deep understanding of PCI DSS and GDPR requirements with hands-on implementation experience
• Sound knowledge of cloud security measures using AWS

Nice to have

• Understanding of security mechanisms in operating systems or development environments
• Knowledge of DevOps fundamentals like CI/CD, automated testing, and proactive security measures
• Prior experience in implementing cloud security with Microsoft Azure
• Possession of recognized security certificates such as CISSP, CCSP, or SANS GIAC

We offer

• Career plan and real growth opportunities
• Unlimited access to LinkedIn learning solutions
• International Mobility Plan within 25 countries
• Constant training, mentoring, online corporate courses, eLearning and more
• English classes with a certified teacher
• Support for employee’s initiatives (Algorithms club, toastmasters, agile club and more)
• Enjoyable working environment (Gaming room, napping area, amenities, events, sport teams and more)
• Flexible work schedule and dress code
• Collaborate in a multicultural environment and share best practices from around the globe
• Hired directly by EPAM & 100% under payroll
• Law benefits (IMSS, INFONAVIT, 25% vacation bonus)
• Major medical expenses insurance: Life, Major medical expenses with dental & visual coverage (for the employee and direct family members)
• 13 % employee savings fund, capped to the law limit
• Grocery coupons
• 30 days December bonus
• Employee Stock Purchase Plan
• 12 vacations days plus 4 floating days
• Official Mexican holidays, plus 5 extra holidays (Maundry Thursday and Friday, November 2nd, December 24th & 31st)
• Monthly non-taxable amount for the electricity and internet bills

EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

By applying to our role, you are agreeing that your personal data may be used as in set out in EPAM´s Privacy Notice and Policy.