Avatar for Zenefits
Streamlined HR services
  • B2B
  • Scale Stage
    Rapidly increasing operations
  • Top Investors
    This company has received a significant amount of investment from top investors
  • +2

Staff Security Architect

Posted: 5 months ago
Visa Sponsorship

Not Available

RelocationAllowed

About the job

TriNet is a leading provider of comprehensive human resources solutions for small to midsize businesses (SMBs). We enhance business productivity by enabling our clients to outsource their HR function to one strategic partner and allowing them to focus on operating and growing their core businesses. Our full-service HR solutions include features such as payroll processing, human capital consulting, employment law compliance and employee benefits, including health insurance, retirement plans and workers’ compensation insurance.

TriNet has a nationwide presence and an experienced executive team. Our stock is publicly traded on the NYSE under the ticker symbol TNET. If you’re passionate about innovation and making an impact on the large SMB market, come join us as we power our clients’ business success with extraordinary HR.

Don't meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single requirement. At TriNet, we are dedicated to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your past experience doesn't align perfectly with every single qualification in the job description, we encourage you to apply anyways. You may just be the right candidate for this or other roles.

Job Description

As a Staff Cloud Security Architect, you will play a key role in partnering with Enterprise Architecture, Global Technology Services, Cloud Center of Excellence, GRC, Security Engineering, Cyber Defense, and the Business to drive leading security practices, capabilities, and technical solutions to support TriNet’s multiple cloud environments. Although you will work with other security architects who have deep knowledge of other domains, a strong understanding of all security architecture domains is important to help deliver a holistic and integrated cloud security architecture.

The successful candidate will be an expert in cloud technologies, how they are used to support traditional infrastructure as well as modern applications, and how they must be secured. Excellent communication and inter-personal skills are a must in this role as the chosen candidate would be a key liaison between multiple stakeholders ranging from technical staff to technology and business leaders. This individual will quickly establish relationships and serve as a trusted advisor and will also have a hands-on role in developing and integrating security solutions and leading practices.

Essential Duties/Responsibilities:

 Maintain awareness of the architecture of TriNet cloud environments and their relationships to the threat landscape and

compliance requirements; be able to communicate same.

 Act as subject-matter expert regarding the security architecture of TriNet’s cloud and Kubernetes environments, including

the solutions used to facilitate security in the cloud.

 Define, create, and drive the adoption of reference architectures, strategies, design patterns, technical specifications,

roadmaps, and requirements for the cloud environments to address security concerns, targeting/leveraging our enterprise

CI/CD pipeline as much as possible.

 Drive the implementation and operationalization of key cloud security tooling such as Cloud Security Posture Management

(CSPM), Cloud Workload Protection Platform (CWPP), and Cloud-Native Application Protection Platform (CNAPP).

 Raise and manage the remediation of issues related to gaps in cloud security.

 Maintain awareness of emerging threats related to cloud security and propose changes to mitigate them.

 Contribute to TriNet security policies, standards, and guidelines related to cloud security.

 Communicate to security and technology leadership the status of projects and issues related to cloud security.

 Research the latest cloud security tools, techniques, and leading practices.

 Find opportunities to enhance control or process efficiency and effectiveness and provide recommendations for same. This

includes enhancement through automation.

JOB REQUIRMENTS AND QUALIFICATIONS

Education:

 Bachelor’s degree in computer engineering, cyber security, or related field

 Master’s degree preferred

Training Requirements (Licenses, Programs, Or Certificates):

 At least one certification related to cloud technology (e.g., OCI Certified Architect, AWS Certified Solution Architect), with

security-specific certification preferred (e.g., OCI Certified Security Professional, AWS Certified Security - Specialty)

 At least one certification related to Kubernetes (e.g., KCNA, CKA), with security-specific certification preferred (e.g., CKS)

 General cloud security certification preferred (e.g., CCSK, CCSP, GCSA)

 General security certification preferred (e.g., CISSP, GIAC)

Experience:

 Minimum of 8 years of work experience in a cloud engineer or architect (preferred) role

 Minimum of 3 years of work experience related to Kubernetes

 Minimum of 5 years of work experience in a security role

 Experience developing security strategies, reference architectures, blueprints, policies, and standards

 Experience driving the implementation of cloud security solutions such as CNAPP, CSPM, and CWPP, with Microsoft

Defender for Cloud and Palo Alto Prisma Cloud preferred

 Experience aligning cloud security to related Center for Internet Security’s benchmarks

 Experience leveraging CI/CD pipelines and management tooling to deploy Infrastructure/Policy/Security as Code

(IaC/PaC/SaC)

 Experience delivering “though leadership” to business and technology executives

 Experience with AWS and OCI, with their native Kubernetes services preferred (i.e., EKS, OKE)

Other Knowledge, Skills, and Abilities:

 Practical knowledge of control frameworks such as the NIST CSF (v1 and v2), Center for Internet Security’s Critical Security Controls (v8), and the Cloud Security Alliance’s Cloud Controls Matrix

 Practical knowledge of the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) framework, and particularly those TTPs related to cloud

 Practical knowledge with CI/CD pipelines and Infrastructure/Policy/Security as Code (IaC/PaC/SaC)

 Practical knowledge of risk management concepts such as risk treatment, exception management, compensating controls, and risk tolerance

 Basic understanding of malware such as worms, viruses, trojans, etc.

 Basic understanding of enterprise-wide technologies, including databases, operating systems, web applications, etc.

 Excellent problem solving and analytical skills

 Ability to communicate with employees at all levels of the organization

 Ability to work with multi-disciplinary and cross-functional teams

 Ability to communicate technical concepts to nontechnical teams

 Ability to employ professional skepticism

 Excellent interpersonal, presentation, negotiation, communication, and facilitation skills

 A demonstrated commitment to high professional ethical standards and a diverse workplac

WORK ENVIRONMENT/OTHER INFORMATION (Travel required, physical requirements, on-call schedules,

etc.)

 Minimal travel required.

 Work remotely with a high sense of personal accountability to complete assigned work.

 The work environment characteristics described here are representative of those an employee

encounters while performing the essential functions of this job. Reasonable accommodations may be made

to enable individuals with disabilities to perform the essential functions

Please Note: TriNet reserves the right to change or modify job duties and assignments at any time. The above job description is not all encompassing. Position functions and qualifications may vary depending on business necessity.

TriNet is an Equal Opportunity Employer and does not discriminate against applicants based on race, religion, color, disability, medical condition, legally protected genetic information, national origin, gender, sexual orientation, marital status, gender identity or expression, sex (including pregnancy, childbirth or related medical conditions), age, veteran status or other legally protected characteristics. Any applicant with a mental or physical disability who requires an accommodation during the application process should contact [email protected] to request such an accommodation.

About the company

Zenefits company logo
Streamlined HR services501-1000 Employees
Company Size
501-1000
Company Type
Healthcare Technology
Company Type
SaaS
Company Type
Enterprise Software Company
Company Industries
Health and Insurance
  • B2B
  • Scale Stage
    Rapidly increasing operations
  • Top Investors
    This company has received a significant amount of investment from top investors
  • YC Funded
    Startup funded by Y Combinator
  • Valuation $1B+
    This company has a valuation of $1B or more
Learn more about Zenefits image

Funding

AMOUNT RAISED
$583.6M
FUNDED OVER
4 rounds
Rounds
C
$500,000,000
Series C - May 2015+3

Perks

Comprehensive health and Commuter Benefits Packages
Health Care packages
FSA and HSA Savings Accounts
An un-known amount contributed
Competitive salary
Some positions salary grade can be negotiated
Catered Daily Lunches
Endless supply of snacks
Centrally located office with panoramic views
A view from high rise
Discounts on Gym Memberships and more!
Possible discount at certain locations.

Similar Jobs

Unwired Labs company logo
Unwired Labs
Maps, Street Addresses & Software based GPS, locating millions of IoT devices everyday!
SuperTokens company logo
SuperTokens
SuperTokens (YC S20) is building open source user authentication
Zobaze company logo
Zobaze
Our Mission at Zobaze : Making Digital Tools Easy and Affordable for Small Businesses to
ROQIT company logo
ROQIT
Smart fleet management ecosystem and zero emission solutions
GetFotos company logo
GetFotos
Send wedding/event photos to clients within 10 seconds of clicking with Fotos
Zobaze company logo
Zobaze
Our Mission at Zobaze : Making Digital Tools Easy and Affordable for Small Businesses to
AuxoAI company logo
AuxoAI
We help companies—turn their strategies into practical digital and AI solutions