Senior Product Security Architect

Summary

Data has never been more valuable and vulnerable. As cybercriminals become more sophisticated and regulations more strict, organizations struggle to answer one key question: “Is my data safe?"

At Varonis, we see the world of cybersecurity differently. Instead of chasing threats, we believe the most practical approach is protecting data from the inside out. We’ve built the industry’s first fully autonomous Data Security Platform to help our customers dramatically reduce risk with minimal human effort.

At Varonis, we move fast. We’re an ultra-collaborative company with brilliant people who care deeply about the details. Together, we’re solving interesting and complex puzzles to keep the world’s data safe.

We work in a flexible, hybrid model, so you can choose the home-office balance that works best for you

We’re seeking a Senior Security Architect to join the Product Security team and help secure Varonis’ products and offerings. You’ll lead security architecture and threat modeling efforts, working closely with engineering, product, and other key teams. This role reports to the Director of Product Security.

Responsibilities:

• Design and implement secure architecture across cloud and on-prem offerings.
• Drive secure development lifecycle practices and embed security into all phases of software development.
• Conduct threat modeling for new and existing services and architectures.
• Identify and support remediation of vulnerabilities; evaluate and integrate security tools.
• Perform cloud security assessments and support compliance efforts (e.g., SOC2, FedRAMP).
• Collaborate with engineering, product, and other relevant teams to enhance security posture.
• Participate in penetration testing and security risk assessments.
  
  

• 5+ years of experience as a Security Architect within an engineering organization, preferably in SaaS or cloud-native environments.
• Strong background in cloud and application security, including architecture, secure development practices, and risk management.
• Vast experience with public cloud platforms (AWS, Azure, GCP) and managed Kubernetes services such as EKS and AKS.
• Deep understanding of TLS, cryptography, authentication protocols (SAML, OAuth), and identity providers.
• Familiarity with cybersecurity frameworks (e.g., NIST CSF, CIS CSC) and OWASP principles.
• Proficiency with security tools such as CSPM, SIEM, WAFs, SAST/DAST/RASP, and vulnerability scanners.
• Solid knowledge of Windows and Linux security fundamentals.
• Demonstrated experience conducting and delivering threat modeling for both existing systems and new service designs.
• Strong communication and collaboration skills, with the ability to influence and align engineering, product, and other cross-functional teams on security best practices.
  
  

• Background in software development or engineering.
• Certifications such as OSCP, CISSP, CISM, or CCSP.
• Experience working in large-scale SaaS environments.