About the Role

We are seeking an experienced Application Security Architect to shape and drive secure technology design across complex, enterprise-scale environments. In this role, you will act as a subject matter expert, partnering with cross-functional teams to embed security into architecture decisions and deliver innovative solutions that protect critical business applications. You will play a key role in strengthening security posture while enabling agile and scalable delivery.

Key Responsibilities

• Define, review, and integrate application security requirements across applications and platforms
• Provide expert input into application security architecture, ensuring security is embedded in design decisions
• Act as a security architecture lead, driving decisions across multiple teams and workstreams
• Collaborate with architecture, development, infrastructure, and delivery teams to integrate security throughout the SDLC
• Conduct security risk assessments, identify vulnerabilities, and recommend mitigation strategies
• Solve cross-team security challenges, balancing technical and business risks
• Develop and maintain application security standards, policies, and procedures
• Stay current with emerging threats, technologies, and best practices to continuously improve security posture
• Provide mentoring, guidance, and training on application security principles
• Act as a trusted advisor, influencing stakeholders on key security and architecture decisions

Required Qualifications

• Bachelor’s degree in Computer Science, Information Security, or a related field
• Proven experience in application security, security architecture, or secure software development
• Strong understanding of secure SDLC, threat modeling, and vulnerability management
• Knowledge of modern architectures (e.g., cloud-native, microservices, APIs) and associated security considerations
• Experience conducting risk assessments and implementing mitigation strategies
• Familiarity with security frameworks and standards (e.g., OWASP, NIST, ISO 27001)
• Strong stakeholder management and communication skills, with the ability to influence decisions

Preferred Qualifications

• Certifications such as CISSP, CSSLP, TOGAF, or equivalent
• Experience with cloud security across platforms such as Azure, AWS, or Google Cloud
• Knowledge of DevSecOps practices and security automation tools
• Experience leading or mentoring teams in security best practices