Security Architect

Udemy, San Francisco, California

See jobs at Udemy

Duration: Full-Time

Udemy’s Security team is looking for an experienced Security Architect to assist with the execution and continued development of the Information security program. The Security Architect will support Engineering, Corporate IT, and Leadership, applying security expertise across many domains in Production and Corporate environments and reports to the Director of Information Security. The candidate will integrate security tools, research, design, and develop security solutions. The candidate will also analyze threats, perform application penetration testing, and provide remediation and mitigation guidance.

Primary Responsibilities:

  • Integrate security tools and configurations using automation solutions and code contribution (SOAR)
  • Collaborate with Engineering and IT Operations teams on architecture reviews and design discussions
  • Collaborate with engineering and security teams, providing leadership and direction on secure architecture, design, and implementation
  • Perform application penetration testing, source code reviews, threat analysis, and provide remediation and mitigation guidance.
  • Responsible for translating business requirements into secure solutions, designs, and reference architectures for applications and products
  • Responsible for researching, designing, and developing security solutions, technical and reference architectures, and supporting security strategies


  • Five to ten years of scripting/development experience (ex: Python, Go, Ruby, Java, JavaScript, etc.)
  • Experience with application security, penetration testing, and defensive programming
  • Able to contribute custom application code to automate security operations
  • Five to ten years experience with Infrastructure as Code, Application Penetration testing, Cloud services automation, SDLC concepts, and Service-Oriented Architecture
  • Experience with Cloud Service Provider platforms such as AWS, GCP, Azure, and automation tools
  • Experience in regulated environments subject to PCI-DSS, SOC/TSC, Sarbanes-Oxley, or Privacy regulations
  • Strong technical and non-technical communication skills
  • Experience with methodologies and frameworks such as OWASP WSTG and Mitre Attack

About Udemy
We believe anyone can build the life they imagine through online learning. Today, millions of students around the world are advancing their careers and passions by exploring and mastering new skills on Udemy, and expert instructors are able to share their knowledge with the world. Through our global marketplace and our solutions for businesses and governments, we connect people everywhere with the skills they need for success in work and life. We’re a close-knit bunch that enjoys problem-solving and collaboration, and we share a serious belief in the power of learning and teaching to change lives. Udemy’s culture encourages innovation, creativity, passion, and teamwork. We also celebrate our milestones and support each other every day.

Founded in 2010, Udemy is publicly traded and headquartered in San Francisco’s SOMA neighborhood with offices in Denver (Colorado), Dublin (Ireland), Ankara (Turkey), Gurugram (India), and São Paulo (Brazil).

At Udemy, we value diversity and inclusion and consider qualified applicants without regard to race, color, religion, sex, national origin, ancestry, age, genetic information, sexual orientation, gender identity, marital or family status, veteran status, medical condition or disability. We will consider for employment qualified applicants with arrest and conviction records.

Udemy in the News

About Udemy

Enriching lives Udemy is a global marketplace for learning and teaching online where students are mastering new skills and achieving their goals by learning from an extensive library of over 55,000 courses taught by expert instructors.

Want to learn more about Udemy? Visit Udemy's website.