Security Architect

Are you ready to make a difference at a high-growth, global company, recognized as a “Visionary” in Gartner’s 2017 Magic Quadrant for Digital Commerce?

A Platinum Salesforce Partner, CloudCraze is the only SaaS based commerce product on the market, built natively in the Salesforce platform. With a core focus in the B2B space, CloudCraze is customer-focused, allowing our clients the ability to provide a tailored experience in order better connect and drive on-going relationships with their customers in ways that are commonly only experienced in B2C environments. 

Position Overview

Reporting into the Product Development Team, the Security Architect is a vital role to ensure success for each version release of CloudCraze, the company’s enterprise-class SaaS package. The candidate will work closely with product owners, developers, professional services, quality assurance, and fellow architects to implement security measures and best practices into our overall development process. Qualified individuals must be experienced in web application and have prior experience specifically within the Salesforce platform.

Responsibilities:

• Provide specific application security expertise to engineering teams, professional services, product management, and sales engineering.
• Work with Account Executives and SEs in answering Security questions on any RFPs / Develop standard responses to Security RFP questions which can be leveraged by sales team; work with AEs on answering any non-standard questions; Be available to handle specific customer questions on CloudCraze security.
• Act as the company application security subject matter expert (SME).
• Work with Salesforce to understand and socialize platform security requirements, best practices, and current and future capabilities.
• Collaborate with product managers on design on customer facing security features.
• Participate in or lead test design sessions and recommend best practices, alternate choices, and trade-offs.
• Adhere to Agile software development methodologies and CloudCraze development best practices.
• Perform architecture, design, and code audits of existing and in-progress applications.

Requirements:

• Minimum 10+ years experience working as a security architect.
• Familiarity with OWASP best practices and guidelines.
• Experience with industry standard black box scanning tools such as Zap or Burp.
• Experience with industry standard static analysis tools.  Checkmarx experience a plus.
• Ability to communicate with technical and non-technical team members on progress, new ideas and challenges related to security.
• Deep understanding of encryption standards and industry practices.
• Eye for detail, ability to spot ambiguity, inconsistency and contradictions.
• Excellent verbal and written communications skills.

Desired:

• Salesforce certified platform developer or better.
• Experience in the e-Commerce domain.
• Familiarity with Salesforce security review process.
• Familiarity with PCI standards and compliance.
• Salesforce SHIELD experience.
• Pen-test experience against an office environment.

 
Why Work Here? 

Start up feel with grown up benefits. Competitive pay, 401(k) with company matching contribution, Blue Cross and Blue Shield medical, Vision, Dental, Life and Disability. Chicago-based employees also have access to a free gym on site, equipped with lockers and showers.  

Transparency. No more wondering what's going on with the business and where its headed. Through quarterly "All Hands" and monthly "OurHour" meetings, we get together to discuss all things CloudCraze: recent client go-lives, new customer wins for the quarter, education on our partners or clients, financials and more, leaving plenty of time for Q&A with our CEO and executive team.   
   

Get involved and have fun. We all take an active part in making this a fun place to work in and outside of the office. Get involved and give back through philanthropic organizations we volunteer with, or internal groups focused on culture, team building, and employee recognition. Sports your thing? We are active in several intramural sports teams and were kickball champs in our latest league.  

Boat, bus or bike to work? We've got you covered with a FSA you can contribute pre-tax dollars, up to $255 per month, and use for transportation to work or parking fees. Bike year round, like some of our employees?  We have an indoor bike storage facility and a lengthy bike rack right outside the office for keeping your wheels safe.   

No more trudging out in bad weather to find lunch. We have a Fooda Popup Monday Friday, right in our lobby. And an organic fruit delivery to the office every week so there's plenty of healthy choices, literally at your fingertips.  

Casual dress. Cut your dry-cleaning costs and pack your suits up. We have a casual dress code that matches our fun and focused culture. 

If qualified, we will respond. No agencies or solicitations, please. At this time, CloudCraze is not sponsoring visas for employment authorization. Equal Opportunity Employer of Minorities, Females, Protected Veterans, and Individuals with Disabilities.