Posted On Mar 29

Security Architect

Danaher Digital

Location : Bengaluru, Karnataka

Headquarters : Washington, D.C., United States

Hiring Mode : Full Time

Hiring Role : Architect

Experience : Mid Level

Job Description
Danaher Digital is our digital innovation, incubation and acceleration center where we’re bringing together the leading strategic product and business leaders, technologists and data scientists for the common purpose of accelerating development and commercialization of disruptive and transformative digital solutions into the marketplace.
We accelerate Danaher’s digital innovation journey by partnering with Danaher operating companies (OPCOs) to monetize and commercialize the potential of emerging and disruptive digital trends such as AI, Machine Learning (ML), Big Data, IoT, Augmented Reality (AR), Cloud (SaaS/PaaS) and other Digital frontiers. If you are driven to forge new disruptive and transformative digital apps, platforms and services by working with such cool and emerging technologies, you belong in Danaher Digital.
True to Danaher’s shared purpose of “Helping Realize Life’s potential”, we work alongside industry’s leading companies in large, diverse and growing markets segments – from industrials to environmental sciences to life sciences to medical diagnostics. If you are inspired by and motivated to create true impact on lives and industries, at a scale and breadth that Danaher is uniquely positioned for, then you belong in Danaher Digital.
If you thrive in startup-like environments where you can envision, architect and rapidly build hi-tech solutions that are literally ground-breaking in the diverse markets Danaher is uniquely positioned to lead, then Danaher Digital is where you want to be.
Located in Silicon Valley, the heart of global innovation, Danaher Digital is ideally situated to capitalize on the digital mega trends transforming our world. And now we are establishing a strategic talent and innovation hub in India’s Silicon Valley – Bangalore, with broad ranging product capabilities and leadership.

Stay up to date with the latest threats and associated technologies to assess risk and make recommendations based on impact.
Design and establish a framework enabling the portfolio of security tools: Intrusion Detection, Static and Dynamic Security Code Test tools (SAST, DAST, IAST).
Be the interface with vendors and internal teams to assess risk versus effort and drive security investments.
Design the security of for IoT & Data Analytics platform in partnership with Product Development, Engineering and DevOps to achieve the goals of availability, scalability and security.
Lead the response to security incidents related to the product: identification, containment, eradication, recovery and post-mortem analysis to bring clarity to the issue, identify causes, possible solutions, and preventative measures.
Responsible for the review and approval of security solutions.
Lead the on-boarding process and perform security evaluation of new vendors and technologies in support of the platform.
Devise technology solutions to address: data encryption at rest, in transit, key rotation strategy, direct data access, access control, network security, intrusion detection, identify management, container/micro services security, single-sign-on and multi-factor-authentication
Use threat modeling to support the prioritization of security initiatives
Design architecture, methods, and controls required to meet security, compliance, and audit requirements.
Serve as primary architect to distill Security policies and design requests from internal teams and turn them into actionable designs and specs.
Articulate near term and long-term architecture, complemented by an implementable roadmap, which contain the enabling artifacts and design specs.
Write proof of concept implementations for difficult security challenges in identity, authorization, cloud control planes, tokenization and encryption.
Work cross-functionally with architects throughout Danaher supporting all businesses and engineering teams.
Mentor other engineers and evangelize security practices through cross-functional work with DevOps and engineering teams.
Continuous "outside-in" scanning and hands-on evaluation of technologies, methodologies & techniques.
At least 5 years of security experience with SaaS cloud providers.
7-10 years of hands-on experience in information security systems design and architecture and implementing production code.
ACL and other relevant services.
Good to have Background in DevOps environments, maintaining security in CI/CD processes.
Knowledge of how infrastructure as a code tools including: Chef, Terraform, etc.
Experience with web application security (OWASP, XSS, SQLi, Top 10) and authentication protocols like OAuth, SAML, LDAP, AD.
Expertise in data protection mechanisms including an understanding of cryptographic algorithms such as AES, 3DES, RSA, ECC, SHA etc.
Good understanding of SaaS development and deployment process and agile s/w development methodologies.
Deep knowledge and experience in Security Operations Centers, Incident Response, Architecture/systems engineering.
Dynamic consulting skills and broad exposure to IT security technologies.
Possess a level of technical curiosity, with desire to learn new technologies within the areas of security and
Degree in computer science / STEM or equivalent experience.
Strong experience of public cloud security services is critical.
Good to have Ability to design, propose and review security of AWS using: VPCs, ELB, Security Groups, IAM, business risk management.
Driven, team focused individual who can work multi-functionally with customers and internal teams to achieve successful customer outcomes.
A passion for developing systems and processes at scale and collaboratively in a fast-paced environment.
Familiar with large-scale data pipelines and tiered event processing for security.
Ability to talk to developers in their language/lingo and collaborate to devise solutions that will address security with little impact.
Be collaborative and an influencer of the security agenda
CISSP ISSAP is a plus