This website uses cookies to ensure you get the best experience.

Arrive and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, that is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor
Arrive career site
Technology · Łódź, Poland · Hybrid

Security Architect

We’ve signed up to an ambitious journey. Join us!

As Arrive, we guide customers and communities towards brighter futures and more livable cities, it isn’t a challenge just anyone could take on. Luckily, we have something to help us make it happen. Our people and our values. We Arrive Curious, Focused and Together. Just as our entire brand is inspired by the North Star, the shining light leading travelers to their destinations since time began, our values guide us. They help us be at our best. For our customers. For the cities and communities we serve. For ourselves. As a global team, we are transforming urban mobility. Let’s grow better, together.

The Role

We are looking for a Security Architect to be responsible for the security design, review, testing, and implementation of security capabilities within Arrive products, across the group.

The Security Architect's responsibilities include reviewing our current security measures, identifying areas of strength and weakness, recommending enhancements, assisting with compliance activities, assisting in the integration of security tests and tooling all along the software delivery chain, and responding promptly to security incidents.

To be a successful Security Architect, you should be experienced in application security and risk assessment, with a strong understanding of security protocols, of authentication and authorization patterns, of on-prem, cloud and hybrid infrastructure security and application security, both build time and runtime. You should also possess strong interpersonal and communication skills.

Job Responsibilities:

  • A thorough understanding of the organization's technology and IT systems.

  • Translate business requirements and use cases into security controls and standards.

  • Plan, research, and design secure application architectures and CI/CD pipelines

  • Develop, review, and collaborate on the configuration of cloud account configuration, network isolation, security groups, access policies, network policies, VPNs, and overall compute platform security, including both host-based and container-based workloads.

  • Integrate identity management systems, digital certificates, and secrets management with application workloads.

  • Assess security capabilities, evaluate tools and approaches and make recommendations as part of the application security roadmap that is fed into team backlogs

  • Help teams to do their threat modeling, review vulnerabilities and suggest strategies and tactics for remediation.

  • Validate security implementations and participate in remediation and risk acceptance efforts.

  • Define, track and report on security metrics to demonstrate security maturity and program effectiveness.

  • Establish disaster recovery procedures and conduct security breach drills.

  • Respond quickly and effectively to all security incidents and provide post-event analyses.

  • Guide the overall security community, cultivating a sense of security awareness, and arranging for continuous education.

  • Participate in Compliance Framework and audits in the Engineering organisation (ISO 27001, GDPR, SOC2, ISAE 3402, TX RAMP…)

  • Remain up to date with the latest trends, standards, and products.

Requirements:

  • A bachelor's or associate's degree in IT, computer science, or equal experience.

  • 5-10 years or more of experience in application development and security.

  • Experience with AWS, including EKS, multi-account setups, GuardDuty, KMS, Config, SSM, CloudFront, Firewall Manager, Shield, Network Firewall, WAF, IAM, CloudTrail, Security Hub, Secrets Manager, Inspector, Global Accelerator, ELB, EC2, Athena.

  • Experience with designing and implementing security for APIs (e.g., authentication, authorisation, rate limiting, API gateways)

  • Experience with data centres and hybrid environments.

  • Experience with container security platforms, orchestration, and runtime protection.

  • A strong working knowledge of current application and infrastructure risks, secure application design, and operating systems including both Windows and Linux experience.

  • Excellent teaching, problem-solving, communication, and interpersonal skills.

  • Experience integrating security into DevOps pipelines and fostering a DevSecOps culture.

  • Knowledge of Java, Kotlin, JavaScript, NodeJS, Go, Swift, Python, bash, Ruby, C# and SQL.

  • Knowledge of data encryption, data loss prevention (DLP), and data privacy regulations.

  • Knowledge of security testing tools (SAST, DAST, CNAPP) integration and implementation.

  • Knowledge on securing serverless functions and platforms would be a bonus.

  • Knowledge on security aspects of hardware would be a bonus.

About us

Arrive, including brands like EasyPark, Flowbird, RingGo, ParkMobile, YourParkingSpace and Parkopedia, is a leading global mobility platform. Present in over 90 countries and 20,000 cities, the company helps people and decision-makers make smarter decisions about urban mobility and ease the experience of travel worldwide. Arrive delivers a unique combination of the core ingredients to make cities more livable: from smart payments and optimized car parks to data-driven traffic reduction and support for reinvestment in public transport and green space. It’s about more than function, it’s about saving time and simplifying the experience of travel for everyone. Travel is more than a journey, it’s how you Arrive.

Department
Technology
Locations
Łódź, Poland
Remote status
Hybrid

About Arrive

Arrive, including brands like EasyPark, Flowbird, RingGo, ParkMobile and Parkopedia, is a leading global mobility platform. Present in over 90 countries and 20,000 cities, the company helps people and decision-makers make smarter decisions about urban mobility and ease the experience of travel worldwide. Arrive delivers a unique combination of the core ingredients to make cities more livable: from smart payments and optimized car parks to data-driven traffic reduction and support for reinvestment in public transport and green space. It’s about more than function, it’s about saving time and simplifying the experience of travel for everyone. Travel is more than a journey, it’s how you Arrive.

Technology · Łódź, Poland · Hybrid

Security Architect

Loading application form

Already working at Arrive?

Let’s recruit together and find your next colleague.