Application Security Architect | USA

We are a leading security services company seeking a highly skilled and experienced Application Security Architect to join our team. This individual will play a critical role in delivering application security consulting services to our clients. The Application Security Architect will be responsible for conducting security assessments, developing secure architecture designs, providing remediation guidance, and assisting clients in improving their overall application security posture. This role requires a deep understanding of application security vulnerabilities, secure development methodologies, excellent client-facing skills, and a passion for staying ahead of emerging threats.

Responsibilities:

• Lead application security assessments: Conduct comprehensive security assessments for clients, including penetration testing, vulnerability scanning, code reviews, and threat modeling.
• Develop secure architecture designs: Design and implement secure application architectures for clients, incorporating security best practices and industry standards.
• Provide remediation guidance: Provide clients with actionable recommendations for remediating identified security vulnerabilities and improving their application security posture.
• Develop and deliver security training: Conduct security awareness training and workshops for clients on topics such as secure coding practices and application security best practices.
• Client communication and relationship management: Build and maintain strong relationships with clients, effectively communicating technical findings and recommendations.
• Contribute to the development of security methodologies and tools: Help develop and refine the company’s application security methodologies, tools, and service offerings.
• Stay up-to-date on emerging threats: Continuously research and analyze new application security threats and vulnerabilities. Develop and share knowledge internally and with clients.
• Scoping and proposal development: Assist in the scoping and development of proposals for application security services.
• Mentorship and team collaboration: Mentor junior team members and collaborate with other consultants to deliver high-quality security services.

Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• 5+ years of experience in application security, preferably in a consulting or professional services environment.
• Deep understanding of application security vulnerabilities, such as OWASP Top 10 and SANS Top 25.
• Experience with secure development methodologies, such as Agile and DevOps.
• Proficiency in conducting security assessments, including penetration testing, vulnerability scanning, code reviews, and threat modeling.
• Strong knowledge of security technologies, such as firewalls, intrusion detection systems, and web application firewalls.
• Excellent communication, interpersonal, and presentation skills, with a proven ability to effectively communicate technical concepts to both technical and non-technical audiences.
• Relevant security certifications, such as CISSP, CEH, OSCP, or SANS GIAC certifications, are highly desired.
• Experience with cloud security (AWS, Azure, GCP) is a plus.
• Experience with DevSecOps practices and automation is a plus.
• Willingness to travel to client sites as needed.

Benefits:

• Competitive salary and benefits package.
• Opportunities for professional development and growth.
• Collaborative and supportive work environment.

Equal Opportunity Employer:

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.