1+ months

Sr. Cybersecurity Architect

New York, NY 10176
Apply Now
Apply on the Company Site
**Our Story**


Xandr is a technology platform powering one of the largest global Advanced TV and Video advertising marketplaces in the industry. We scale our business as WarnerMedia people who independently build the Xandr platform and brand. For more than a decade, our data insights, premium content, powerful technology, and scaled direct-to-consumer distribution have given us a competitive edge leading us to improving advertising for all brands, publishers, and consumers.


How do we do this? With talented, passionate people like you! We bring together people from diverse backgrounds and give them an opportunity to bring their ideas to life. Join our community to Make Advertising Better!


**You Will**


+ Provide security guidance on a constant stream of new products and technologies

+ Interact directly with the security community regarding vulnerabilities and threats

+ Analyze, assess, and respond to various internet threats

+ Conduct regular security assessments

+ Lead application security reviews and threat modeling, including code review and dynamic testing

+ Lead in development of automated security testing to validate that secure coding best practices are being used

+ Act as a trusted advisor to engineering teams, providing practical advice on secure design, coding and testing with a focus on cloud technologies, practices and processes

+ Participate and assist in initiatives to holistically address multiple vulnerabilities found in a functional area

+ Correlate information from a variety of tools and engineering processes to identify security insights, and opportunities to increase resiliency from a wide range of attacks

+ Establish security requirements for cloud-based solutions by evaluating business strategies and requirements

+ Provide domain expertise in container security and public cloud technology

+ Develop, curate, and improve application security detections (static and dynamic) to identify vulnerabilities at scale

+ Evaluate and recommend new security testing tools

+ Perform static and dynamic application security assessments to ensure the highest quality standard for our detection rule sets

+ Risk assessment and Threat Modeling

+ Develop, enhance, and interpret security standards and guidance

+ Support and evolve our HackerOne bug bounty program


**You Have**


+ Provide security guidance on a constant stream of new products and technologies

+ Knowledge of internet security issues

+ Contributions to the security community (public research, blogging, presentations, etc)

+ Understanding of common security vulnerabilities as described in the OWASP Top 10 and SANS 25 as well as their remediation

+ Proven track record in secure development practices such as threat modeling, secure design, secure code review/assessments, and the use of static and dynamic analysis tools in a product security engineering environment

+ Understanding of cloud security controls and the specific challenges in securing cloud-based solutions

+ Competency in secure coding in multiple languages, including at least one scripted (e.g. Python, JavaScript, Ruby, Perl, PowerShell, Bash and/or PHP) and one compiled (e.g. C, C++, C#, Go/Golang) language

+ Container security (Docker and/or Kubernetes) is a plus

+ Understanding and ability to communicate the techniques, tactics and practices of an attacker to engineers and business stakeholders who are part of a globally dispersed team

+ Strong understanding of OSI protocols such as TCP/IP, UDP, HTTP, HTTPS

+ Good understanding of AWS/Azure/GCP access controls and best practices

+ Good understanding of Ubuntu/Linux

+ Bachelor's degree in Computer Science, Computer Engineering, Information Security or related field with 5+ years experience; or equivalent experience

+ Excellent leadership, teamwork, and collaboration skills

+ Experience building automated tooling solutions

+ Experience with threat modeling and architecture reviews

+ Experience with commercial static and dynamic security scanning tools (e.g. Fortify, AppScan, Veracode, Blackduck, Checkmarx, SonarQube, Coverity)

+ Experience in the evaluation and implementation of industry standard enterprise offerings from leading cybersecurity platforms such as Azure security tech stack, Signal Science, Okta, PingFederate, Rapid7, Tenable, Expanse, Proofpoint, Splunk, SentinelOne and AquaSec

+ Industry certifications: GIAC, and/or CISSP

+ Excellent written and verbal communication skills


**Our Perks**


+ Comprehensive healthcare coverage

+ Flexible time off including volunteer days, vacation, and holidays

+ Professional development resources and education reimbursement

+ Paid parental leave

+ Fitness reimbursement

+ AT&T internet/phone and HBOMax discounts

+ 401k with company match


**Our Culture**


Xandr strives to foster a diverse, inclusive and engaging work environment. Our inclusivity in action includes:


+ Staying connected and embracing this new normal as we work from home - we may be social distancing but we're \#InsideTogether

+ Creating meaningful change for our communities (https://www.xandr.com/social-responsibility/) and pathways for future generations of diverse talent through our employee volunteerism efforts

+ Sharing insight and stories on what its really like to work here (https://www.linkedin.com/feed/hashtag/?keywords=xandrlife)

+ Partnering with organizations to support our commitment to womens advancement in tech

+ Providing accommodations for persons with disabilities, both for interviewees and for employees. Should you require an accommodation, please let us know and well make arrangements


**Awards**


Xandr, its products and its executives have received several prestigious awards. In 2020 alone, Cablefax's annual The Faxies awards named Xandrs EVP and GM Innovator of the Year and the Xandr technology organization Tech Team of the Year. In the same year, seven female executives were included in the Cynopsis list of Top Women in Media, and several of its products, innovations and client partnerships were recognized by esteemed outlets globally, including AdExchanger, Digiday, The Drum, ExchangeWire and Cynopsis. Concurrently, the companys dedication to corporate social responsibility was recognized in Fast Companys 2020 World Changing Ideas issue. Xandr was also included on Business Insider's Hottest AdTech Companies list in 2019 and 2018.


Xandr is an equal opportunity employer. Qualified candidates will receive consideration for employment without regard to race, color, religion, national origin, gender, sexual orientation, gender identity or expression, age, mental or physical disability, and genetic information, marital status, citizenship status, military status, protected veteran status or any other category protected by law.


Xandr Twitter (https://twitter.com/xandr?ref\_src=twsrc%5Egoogle%7Ctwcamp%5Eserp%7Ctwgr%5Eauthor)


Xandr Instagram


Xandr LinkedIn (https://www.linkedin.com/company/xandr/)
We expect employees to be honest, trustworthy, and operate with integrity. Discrimination and all unlawful harassment (including sexual harassment) in employment is not tolerated. We encourage success based on our individual merits and abilities without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, marital status, citizenship status, military status, protected veteran status or employment status.
Posted: 2022-01-17 Expires: 2022-06-15
Sponsored by:
ADP Logo

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Sr. Cybersecurity Architect

AT&T
New York, NY 10176

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast