Security Architect

Landis is a homeownership company taking on the housing affordability crisis. Our mission is to guide people on their unique path to homeownership, and we do this through a coaching app and a holistic homeownership program where we buy a home for a client and rent it to them while we help them prepare for a mortgage. Landis has been on the Built In 50 Best Places to Work in New York City two years in a row.

Given the financial component of our platform, we are looking for our first cyber security hire – a hands-on Principal Security Architect – to join the engineering team. This position requires depth and breadth of technical expertise, as well as prior success building a security program from scratch with a DevSecOps mindset.

Where you will make an impact:

• Establish a secure CI/CD and DevSecOps program from the ground up
• Embody a “Player / Coach” mentality, collaborating with product and engineering teams to build secure features through secure design reviews and threat modeling.
• Lead analysis, investigation and validation of secure engineering development across the platform
• Utilize technical expertise with container orchestration to build, maintain and scale secure CI/CD pipelines in the cloud
• Create security automation microservices, and system for security tools to be configured and managed within cloud infrastructure
• Ensure Landis is in compliance with relevant GRC security controls and frameworks (i.e. PCI-DSS, ISO, etc)

You are:

• Passionate about Landis’ mission, and committed to the secure development of our platform
• Both a collaborator and a leader – the engineering team at Landis is one team, one dream!
• Cool under pressure, and thrive in a fast-paced environment
• Dedicated to efficiency, quality and being better than the day before

Your experience:

• 4+ years of experience as secure software development engineer
• 3+ years of engineering experience in cloud environment (AWS or Azure)
• Programming expertise in Python, Java, Scala, etc. for secure software development and automation
• Experience with CI/CD tools like Kubernetes, Jenkins, Docker, Gitlab, Chef, Ansible, or OpenShift
• Proven success building a security program from scratch in serverless architecture, based on DevSecOps principles and processes
• Deep understanding of security technologies and processes within PaaS, SaaS, IaaS and other cloud environments

Please note: This is a full-time position that will be remote or in the New York office