Cloud Security Architect

Описание вакансии

⚡️ Why Altium?

Altium is transforming the way electronics are designed and built. From startups to world’s technology giants, our digital platforms give more power to PCB designers, supply chain, and manufacturing, letting them collaborate as never before.

• Constant innovation has created a transformative technology, unique in its space
• More than 30,000 companies and 100,000 electronics engineers worldwide use Altium
• We are growing, debt-free, and financially strong, with the resources to become #1 in the EDA industry

About the role:

This role is responsible for making our software secure by design and keeping it secure throughout its lifecycle — from architecture and development to deployment and operations. The Architect will define security standards, embed security into engineering workflows, and ensure our SaaS platform meets enterprise-grade security and compliance expectations.

A day in the life of our Cloud Security Architect:

• Define and maintain secure architecture patterns for cloud-native SaaS systems
• Review and approve system designs for security risks
• Lead threat modeling for new features and platform components
• Design secure multi-tenant isolation models
• Architect secure API frameworks and integration patterns
• Ensure tenant data isolation and encryption strategies
• Continuously improve Secure SDLC practices
• Define secure coding standards and guardrails
• Architect secure cloud environments
• Define IAM, least-privilege access models, and service-to-service authentication
• Participate in security audits and customer security reviews
• Lead security incident root-cause analysis for application-layer incidents
• Improve detection and monitoring for application-level threats
• Collaborate with SRE to ensure security does not compromise reliability

Who We’re Looking For:

• 8+ years in software engineering, security engineering, or cloud architecture
• Strong expertise in cloud-native architecture (microservices, containers, Kubernetes)
• Deep understanding of application security (OWASP Top 10, secure coding)
• Strong knowledge of IAM, authentication protocols (OAuth2, OIDC, SAML)
• Experience designing secure multi-tenant SaaS systems
• Hands-on experience with one major cloud provider (AWS preferred)

Preferred Qualifications:

• Experience in enterprise SaaS environments
• Experience with regulated industries (FedRAMP, CMMC)
• Knowledge of tenant-based encryption models
• Experience implementing zero-trust architecture
• Background in vulnerability disclosure or bug bounty programs

The salary range for this role is $240,000 - $260,000. Actual compensation packages within this range are based on a wide array of factors unique to each candidate and role requirements, including but not limited to skill set, years and depth of experience, certifications, and specific location.

Our Benefits

• 🏥 Medical, Dental, Vision Plans and HSA and FSA accounts
• ❤️ Basic Life and AD&D insurance; disability coverage where applicable
• 🌅 Retirement 401(k) Plan Option with Altium match
• 🧘 Employee Assistance Program
• 🏖 Paid holidays plus a “Choice Day” off per quarter
• ✈️ Paid time-off on arising schedule upon key milestones
• 🤒 Sick time for Dr. appointments or family health needs
• 👶 Family medical, maternity, paternity, and military leave
• 🥳 Employee referral program
• 🌍 Remote working abroad program
• 📚 Professional development support and resources
• 🥪 Free lunch, snacks, and drinks in the office
• 🚗 Free parking

🌍 Also, we would like you to know

We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.

💡 Learn more about why a career at Altium is an opportunity like no other:https://www.youtube.com/watch?v=cAYCOLpPLPE

✈️ Altium Benefits: https://careers.altium.com/#s-benefits 

👏 Are you already an Altium employee?Please apply directly through our internal Greenhouse job board. If you have questions, please contact HR.