Security Architect

AspenTech is a global software leader helping industries meet the increasing demand for resources from a rapidly growing population in a profitable and sustainable manner. Our Digital Grid Management software suite, including AspenTech OSI products, helps power and utilities companies achieve superior real-time control, optimization and management for exceptional performance of complex energy networks.

The RoleWe are seeking a highly skilled Security Architect to join our team and lead the security and compliance aspects of our new Platform Initiative. This role will work with Product Security to develop, align and implement policies, standards and control patterns. A key responsibility of the Security Architect is to collaborate with other Architects to ensure the Platform’s security and compliance across various business domains and environments, including OT, IT, on-premise, cloud, and edge.Your Impact

• Oversee security and compliance aspects of the platform, including Identity Access Management (IAM), data protection, and threat management.
• Understand and integrate various authorization models from existing products into a cohesive design for centralized services, ensuring alignment with industry standards.
• Direct the work of Platform Development teams to ensure security measures are integrated across solutions.
• Drive the implementation of security policies, standards, and procedures to ensure the platform’s integrity and confidentiality, collaborating with Product Security to align with and complement security objectives.
• Collaborate with other Architects and Engineering teams to integrate security best practices into the Platform’s design and development.
• Work with Product Securityon security assessments and audits to identifyvulnerabilities, ensuring compliance with industry standards and regulations.
• Stay updated with the latest security trends, threats, and technologies to continuously improve the Platform’s security posture.

What You'll Need

• Bachelor’s degree in computer science, Information Security, or a related technical field.
• Proven experience as a Security Architect or in a similar role.
• Strong knowledge of security frameworks and standards, such as NIST, ISO 27001, NERC CIP, CIS benchmarks, AWS cloud security practices, Azure Cloud Security Practices.
• Experience with Identity Access Management (IAM), OIDC/OAuth, and Policy Based Access Control.
• Experience with supply chain security, including securing supply chain processes, managing third-party risks, and ensuring compliance with relevant regulations and standards.
• Experience with cloud-native technologies such as Docker and Kubernetes, including expertise in runtime security for Docker and control plane security for Kubernetes. Familiarity with tools related to policy enforcement, security monitoring, and compliance checks.
• Familiarity with security technologies and tools, including firewalls, intrusion detection/prevention systems, and encryption.
• Excellent problem-solving and analytical skills.

#LI-RT1