Application Security Architect
About the Role:
Fully remote – US Persons only
Full time hire
We are seeking a highly skilled and experienced Application Security Architect to join our growing team. In this role, you will play a critical role in safeguarding our client’s applications and systems by identifying and mitigating security vulnerabilities throughout the software development lifecycle (SDLC).
Key Responsibilities:
- Threat Modeling & Vulnerability Assessment: Conduct in-depth threat modeling exercises, perform penetration testing, and analyze security risks across the entire application landscape.
- Security Architecture & Design: Design and implement secure application architectures, ensuring compliance with industry best practices and security standards.
- Vulnerability Remediation: Identify and remediate security vulnerabilities through proactive testing and continuous monitoring.
- SDLC Integration: Integrate security best practices throughout the entire SDLC, from design and development to deployment and maintenance.
- Technical Expertise: Leverage your expertise in API security, ethical hacking techniques, and security testing tools (such as ZAP).
- Team Collaboration: Collaborate closely with development teams, security engineers, and other stakeholders to ensure the security of applications.
- Knowledge Sharing: Mentor junior security engineers, conduct training sessions, and contribute to the development and maintenance of security documentation and best practices.
- Research & Innovation: Stay abreast of emerging security threats and technologies, and contribute to the development of innovative security solutions.
Qualifications:
- Proven experience as an Application Security Architect or a similar role.
- Strong understanding of security principles and best practices (e.g., OWASP, NIST).
- Expertise in security testing methodologies, including penetration testing, vulnerability scanning, and threat modeling.
- Experience with security tools and technologies, such as ZAP, and API gateways.
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Strong team player with the ability to collaborate effectively with cross-functional teams.
Bonus Points:
- Experience with cloud security (AWS, Azure, GCP)
- Relevant security certifications (e.g., CISSP, OSCP, CEH)
If you’re passionate about cybersecurity and thrive in a dynamic environment, we encourage you to apply.
