Security Architect at Anaplan
San Francisco, CA, US

Anaplan is looking to hire a SECURITY ARCHITECT based in SAN FRANCISCO. Are you a creative security enthusiast who can both give and receive feedback? Do you lead with inclusion, collaboration and openness?


At Anaplan, we are looking for a self-motivated Security Architect to lead our growing Security Team in San Francisco. This is an opportunity for you to work for a high-growth startup disrupting how companies do business.


As a Security Architect you'll be responsible for upholding the highest security standards for the next generation Anaplan Platform. With big technical problems to solve - you'll have the chance to push boundaries and create something new.


We have a long list of incredible benefits and offer highly competitive packages - we’re serious about attracting the best technologists in the industry. You’ll be working with super smart people who are pushing Java and the JVM to the limits. We’ll also offer you a rewarding career with a company that values diversity and invests in you.


This role is an immediate full-time position. If you’re ready to roll up your sleeves and take on unique problems that no one is solving in the tech space yet, keep reading.


What you'll be doing:

  • Extraordinary communication and collaboration skills. You are pragmatic and know how to build trust.
  • Can manage our Secure Development Lifecycle. Provide guidance to our development  teams regarding designs and best practices as it relates to application security.
  • Partner with other Architects across the company to guide security decisions.
  • Evangelist of Application Security through the organization.
  • Positive energy and enthusiasm - cultural fit is a really big deal for us…we're looking for really smart people who love solving big problems and are self-motivated to get things done.

More about you:

  • Experience as an Engineering Architect with a focus on security
  • Experience with delivering all security aspects of high-scale cloud architectures including Authentication, Authorization, Identity, Auditing, and Applied Cryptography.
  • Deep understanding of encryption, including applicable hardware and software for at-rest and transport encryption, key management, in conjunction with data management and computation. Symmetric/ asymmetric key, certificates and TLS.
  • Strong experience in Application Security practices such as threat modeling, input validation and authorization and access control models.

Bonus Points:

  • Building security solutions on top of container orchestration platforms like Kubernetes.
  • OAuth2, SAML2 and Identity Management
  • Compliance frameworks such as PCI-DSS, HIPAA, GDPR and ISO-27001