Product Security Architect

As the Product Security Architect for Digital and Enterprise Applications at Fluence, your role is crucial in ensuring that security is seamlessly integrated into the lifecycle of both digital and corporate-facing applications. You will be responsible for designing, reviewing, and implementing robust security solutions to protect sensitive data and business logic within a diverse portfolio of software applications. Your expertise in application security, secure architecture, and threat modeling will play a vital role in advancing security practices within an agile development environment. Reporting directly to the Head of Product Security, your key responsibilities will include: - Collaborating with cross-functional teams to define security requirements for new and existing products. - Leading threat modeling sessions to identify and mitigate potential security risks. - Performing security architecture reviews to validate application security across cloud and on-premises solutions. - Defining security posture for new and existing digital applications in alignment with industry standards and compliance requirements. - Developing and enforcing security assurance maturity models to continuously improve application security. - Driving security improvements across digital and enterprise applications to protect business functions and sensitive data. - Fostering a proactive security culture within the organization to enable secure and resilient application development. To excel in this role, our ideal candidate at Fluence would bring: - A Bachelor's degree in computer science or a related field. Equivalent work experience will be considered. - Professional certifications such as CISSP, CSSLP, or similar. - Core product security and software development background of 5+ years. - Ability to articulate security requirements for build and delivery pipelines. - Experience in Threat Modeling and Security Architecture Reviews as per industry standards. - Experience working with energy-related companies or national lab institutions is desirable. - Expertise in Microsoft Azure, GCP, and AWS to secure cloud applications and SaaS products. - Experience in Secure SDLC SAST, SCA, DAST, Container Security, and Penetration testing. - Experience in data security/governance initiatives in a highly regulated environment. - Continuously assessing the application security maturity and building enhancement plans. - Soft skills - excellent communication skills with the ability to work collaboratively with cross-functional teams. At Fluence, our culture is the foundation that drives our ambitious growth strategy and fuels our mission to transform the future of energy. Our core cultural pillars empower us to innovate, collaborate, and lead with purpose, ensuring we continue to deliver unparalleled value to our customers and the world. - Unleash Voices: We believe every voice matters, encouraging openness, active listening, and decisive action to create a culture where diverse perspectives are heard and valued, driving innovation and progress. - Customer Fluent: Our commitment to delivering exceptional value that exceeds expectations by understanding our customers" needs and adapting swiftly to meet them. - Infinite Impact: Committed to creating the impossible, pushing boundaries to deliver sustainable, game-changing solutions that shape a brighter, more energy-efficient future for all. - All In: Relentlessly focused on identifying and seizing opportunities that propel us forward, embracing an ownership mindset to accelerate progress and create lasting success.,