SECURITY SOLUTIONS ARCHITECT | DEVSECOPS/APPSEC (REMOTE)

Who is Trace3?Trace3 is a leading Transformative IT Authority, providing unique technology solutions and consulting services to our clients. Equipped with elite engineering and dynamic innovation, we empower IT executives and their organizations to achieve competitive advantage through a process of Integrate, Automate, Innovate.Our culture at Trace3 embodies the spirit of a startup with the advantage of a scalable business. Employees can grow their career and have fun while doing it!Trace3 is headquartered in Irvine, California. We employ more than 1,200 people all over the United States. Our major field office locations include Denver, Indianapolis, Grand Rapids, Lexington, Los Angeles, Louisville, Texas, San Francisco. Ready to discover the possibilities that live in technology?Come Join Us!Street-Smart- Thriving in Dynamic TimesWe are flexible and resilient in a fast-changing environment. We continuously innovate and drive constructive change while keeping a focus on the “big picture.” We exercise sound business judgment in making high-quality decisions in a timely and cost-effective manner. We are highly creative and can dig deep within ourselves to find positive solutions to different problems.Juice - The “Stuff” it takes to be a Needle Mover We get things done and drive results. We lead without a title, empowering others through a can-do attitude. We look forward to the goal, mentally mapping out every checkpoint on the pathway to success, and visualizing what the final destination looks and feels like.Teamwork - Humble, Hungry and SmartWe are humble individuals who understand how our job impacts the company's mission. We treat others with respect, admit mistakes, give credit where it’s due and demonstrate transparency. We “bring the weather” by exhibiting positive leadership and solution-focused thinking. We hug people in their trials, struggles, and failures – not just their success. We appreciate the individuality of the people around us.About the Role:Trace3 is seeking an experienced Application Security Professional to join our fast-growing DevSecOps consulting practice, helping customers evaluate and implement application security solutions. This is a presales role where you will serve as the solutions expert, supporting our sales teams in prospecting, influencing, architecting, and scoping application security solutions for our customers. You will assist in developing application security sales and technical training collateral for customers and internal sales teams. Additionally, you will conduct research and market analysis of leading application security platforms, performing lab testing to validate coverage and efficacy. You will also help our sales teams understand clients' business goals and technical requirements to recommend appropriate application security solutions for their use cases. This includes planning and leading the implementation and adoption of application security platforms, reviewing customer software architecture and source code, providing training for developers and management, and driving solution adoption across multiple development teams.What You’ll Do:Lead presales engagements as the DevSecOps Application Security subject matter expert to Trace3 customers and sales teams nationallyWork closely with our sales teams throughout the sales process to ensure all the client’s technical needs are understood and met with the best possible solution optionsDrive technical relationships with all stakeholders and support sales opportunitiesPresent at client facing and industry events as the SME in application securityConduct research analysis and lab testing of application security solutions to evaluate efficacy, use cases coverage, and fit-for-purposeBuild and maintain application security vendor partner relationshipsContribute to the development of both customer facing and internal facing presales collateralsContribute to the development of service offering collaterals and service delivery documentations that we can take to market with selected application security solutionsChampion Agile and DevOps leading-practices, processes, design patterns, and tools in support of DevSecOps transformationAssist in services opportunity generation, technical scoping, and Statements of Work (SOW) writingAssist in the delivery of application security servicesPromote DevSecOps culture to our customersDrive adoption of application security tools and DevSecOps practices as part of customer’s transformationQualifications & Interests:At least 5 years of Development Experience in any programming languageMinimum of 8 years of combined hands-on experience as a software engineer, DevOps engineer, and/or Application Security engineerPrevious experience working as a Sales Engineer or Solutions Architect working with application security software products or servicesAbility to assess customer requirements, identify business problems, and demonstrate proposed solutionsProgramming and scripting proficiency – minimum of two: C#, Java, Typescript, Javascript, Bash, Python, GoHands on experience with various application security tools including SAST, SCA, IAST, DAST, API Security, WAF, and RASPHands on experience implementing and integrating security tools into CI/CDHands on experience integrating and operating commercial application security solutions (SAST/SCA/DAST/IAST) such as Veracode, Checkmarx, Synopsys, WhiteSource, Snyk, Invicti – Accunetix or Netsparker, Contrast SecurityHands on experience delivering secure software based on frameworks such as OWASP SAMM, ASVS, MASVS, CWE, SANS, BSIMM.Hands on experience implementing and integrating security tools into CI/CDExperience with Agile methodologies such as Scrum and KanbanKnowledge of developer tools and environments, project management and bug tracking systemsUnderstanding of cloud native development patterns and microservices architecturePrior experience working at an application security vendor – bonus pointsBONUS QUALIFICATIONS:Experience with Mobile Application Security solutions and practicesExperience with API security solutions such as Traceable, Noname Security, Salt SecurityUnderstanding of service-oriented architecture (REST APIs, micro-services, etc) and security best practicesDevOps and Architecture experience and certifications with one of the major public cloud providers (AWS, Azure, Google Cloud)Experience with securing containers, kubernetes, and AWS Lambda functionsExperience conducting secure coding training and implementing security champions programExperience conducting threat modeling and application penetration testingPrior consulting experience is a plusMust have excellent interpersonal skills, a high degree of professionalism and the ability to design technology solutions for commercial and large enterprise companiesExcellent presentation, communication, and writing skills requiredThe Perks:Comprehensive medical, dental and vision plans for you and your dependents401(k) Retirement Plan with Employer Match, 529 College Savings Plan, Health Savings Account, Life Insurance, and Long-Term DisabilityCompetitive CompensationTraining and development programsStocked kitchen with snacks and beveragesCollaborative and cool office cultureWork-life balance and generous paid time off***To all recruitment agencies: Trace3 does not accept unsolicited agency resumes/CVs. Please do not forward resumes/CVs to our careers email addresses, Trace3 employees or any other company location. Trace3 is not responsible for any fees related to unsolicited resumes/CVs.Actual salary will be based on a variety of factors, including location, experience, skill set, performance, licensure and certification, and business needs. The range for this position in other geographic locations may differ. Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base salary.Estimated Pay Range$175,000—$200,000 USDThe Perks:Comprehensive medical, dental and vision plans for you and your dependents401(k) Retirement Plan with Employer Match, 529 College Savings Plan, Health Savings Account, Life Insurance, and Long-Term DisabilityCompetitive CompensationTraining and development programsStocked kitchen with snacks and beveragesCollaborative and cool cultureWork-life balance and generous paid time off***To all recruitment agencies: Trace3 does not accept unsolicited agency resumes/CVs. Please do not forward resumes/CVs to our careers email addresses, Trace3 employees or any other company location. Trace3 is not responsible for any fees related to unsolicited resumes/CVs.