Skip navigation EPAM

Security Architect Remote

  • hot

Security Architect Description

Job #: 71843
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

DESCRIPTION


We are seeking Web Application Security, CIAM, API Security and Session Management Enterprise Architect to join our project, with analytical mindset, who will be working on technical design on the whole system level, able to identify dependencies between multiple applications. This is a critical role as this new program is one of the most significant improvement programs in our team.
We are supporting Employment Contract or B2B, depending on your preferences.

The remote option applies only to the Candidates who will be working from any location in Poland.
#PL_HJ_SA

Project technologies and tools

  • IAM (Identity and Access Management)
  • Okta
  • PingFederate
  • Forgerock
  • KeyCloak
  • Cloud.AWS

Responsibilities

  • Work across the teams and also the central team to drive out the effective design of the following capabilities:
    • Customer identity and access management
    • End to end API security
    • Browser and resource usage session management
    • Access control and entitlements, including complex license management
    • Global service discovers and routing
  • Act as a subject matter expert for all teams building out these capabilities and also making changes to the client's end user facing platforms to utilize these new capabilities
  • Work with clients as they migrate across to this new platform and exploit optimized SSO and access management techniques
  • Carry out detailed review of the end-to-end security of our end user platforms to ensure they are secure
  • Work with teams to fully understand the impact of introducing the new capabilities and work out how to deal with the impacts in the most efficient and safe way
  • Utilize this program as a vehicle to improve the value of our platforms and products to customers

Requirements

  • Hands on enterprise delivery experience of the design and delivery of the following capabilities:
    • Customer identity and access management o End to end API security
    • End to end API security
    • Browser and resource usage session management
    • Access control and entitlements, including complex license management
    • Global service discovers and routing
  • Direct experience on the implementation and usage of platforms such as:
    • Okta
    • Ping
    • Forgerock
    • Keycloak
  • Demonstrable experience on delivering highly secure end user platforms across different channels – browser, mobile, etc
  • Solid understanding of the end-to-end architecture of web application platforms and how to ensure they are secure, flexible and robust
  • Strong experience of the end-to-end networking and routing involved in global enterprise web applications
  • We are migrating all processing to AWS Cloud, so enterprise AWS utilization experience is valuable

Nice to have

  • Java
  • JavaScript

We offer

  • Team & working conditions:
    • Friendly team and enjoyable working environment
    • Engineering community of industry’s professionals
    • Flexible schedule and opportunity to work remotely
    • Relocation within our offices
    • Corporate and social events
    • Benefits package (health insurance, multisport, shopping vouchers)
  • Stable income:
    • Employment Contract or B2B
    • Regular assessments and salary reviews
    • Participation in the Employee Stock Purchase Plan
    • Referral bonuses
  • Career development:
    • Innovative solutions delivery and engineering excellence
    • Outstanding career roadmap
    • Leadership development, career advising, soft skills and well-being programs
    • Certification (GCP, Azure, AWS)
    • Unlimited access to LinkedIn Learning, Get Abstract, O’Reilly, Cloud Guru
    • Language classes on English and Polish for foreigners
  • Please note that only selected candidates will be contacted

A day in the life

SALMAN TALAT
Account Manager
Toronto, Canada

IRYNA KOVALENKO
Delivery Manager
Kyiv, Ukraine

JAN MAZUREK 
Senior Business Analyst
Gdansk, Poland

Hello. How Can We Help You?

Get in touch with us. We'd love to hear from you.

Our Offices