Application Security Architect

Job Summary

• We are seeking an experienced Security Architect to join the Cyber & Information Security organization.
• This role will focus heavily on application security, security engineering, and enterprise security architecture across modern cloud and engineering environments.
• The ideal candidate will bring strong expertise in secure application design, security frameworks, cloud security, and threat mitigation while partnering closely with engineering, infrastructure, and enterprise architecture teams.
• This individual will help define and mature security standards, patterns, and governance across the organization while supporting emerging technologies, including AI-enabled platforms and tools.
• This is a highly collaborative and hands-on role suited for someone who understands how to balance security, engineering enablement, and scalable architecture design.

Key Responsibilities

• Identify and document security requirements, standards, and approved architecture patterns across multiple security and technology teams
• Consolidate security controls and practices into a unified enterprise security architecture framework
• Develop and maintain standard security patterns, reference architectures, and secure design guidelines
• Partner with Enterprise Architecture and engineering teams to integrate security requirements into enterprise technology initiatives
• Perform application security architecture reviews for new and existing applications, platforms, APIs, and cloud services
• Assist with building and maintaining security architecture frameworks and mapping security tools/capabilities to controls, risks, and threat libraries
• Evaluate internal and external threats and provide recommendations for mitigation and remediation strategies
• Support security engineering initiatives related to application security, identity and access management, and secure SDLC practices
• Review and assess emerging AI technologies, AI-enabled platforms, and related security risks
• Maintain awareness of evolving cybersecurity threats, vulnerabilities, and industry best practices
• Assist with security tool evaluations, implementation guidance, and capability improvements
• Collaborate with technology and engineering teams to implement secure-by-design principles across enterprise platforms
• Contribute to penetration testing reviews, application vulnerability remediation efforts, and security risk assessments

Required Qualifications

• 7+ years of experience in cybersecurity, security architecture, application security, or security engineering roles
• Strong understanding of application security principles, secure architecture patterns, and secure software development practices
• Hands-on experience with application security reviews, threat modeling, vulnerability management, or penetration testing
• Experience working with cloud platforms such as Azure or Google Cloud Platform
• Knowledge of identity and access management concepts and security controls
• Familiarity with industry security frameworks and standards such as NIST
• Experience evaluating security technologies, tools, and enterprise security controls
• Ability to communicate effectively with both technical and non-technical stakeholders
• Strong analytical, problem-solving, and risk assessment skills
• Experience partnering closely with engineering and infrastructure teams in enterprise environments

Preferred Qualifications

• Exposure to AI security, AI governance, or security reviews for AI-enabled technologies and platforms
• Experience supporting enterprise architecture or security governance initiatives
• Familiarity with modern DevSecOps and secure CI/CD practices
• Security certifications such as CISSP, CCSP, CSSLP, or related certifications are a plus
• Experience working within highly regulated environments is preferred