Application Security Architect

About The Position

Requirements

• 10 years of comprehensive full stack development experience, with proficiency in technologies such as J2EE, C# .NET, JavaScript, and Python.
• 5 years serving as a senior application security architect, with a strong emphasis on promoting application security standards and practices.
• Demonstrated expertise in designing, architecting, and building secure enterprise web applications.
• Skilled in developing scalable applications on cloud platforms, including AWS and/or Azure, with a focus on security principles and deployment best practices.
• Highly experienced in conducting security peer reviews across application design, testing, and code.
• Working experience with integrating applications into security technologies such as WAF, API gateways, Privileged access management platforms , identity access management platforms , LDAP and identity access governance systems

Responsibilities

• Collaborate with the client in the definition and implementation of information security policies, strategies, procedures and settings to ensure confidentiality, integrity and availability of client’s environment and data
• Participate with the customer in the strategic design process to translate security and business requirements into processes and systems
• Evaluate new / emerging security products and technologies and making recommendations to customer leadership in regards to the security posture impact on the organization
• Maintaining an information security strategy (forward looking roadmap), for your customer, aligning services / portfolio components to the strategy
• Ensure the delivery of information security services to the customer is in compliance with the contract and any applicable standards and regulatory requirements (e.g., PCI, SOX)
• Identify, review and recommend information security improvements as they relate to the achievement of the customer’s business goals and objectives
• Participate in internal and external audits for the customer (e.g., PCI, SOX) and coordinate information security services activities
• Manage and drive remediation efforts related to information security; remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and Critical Practice assessments
• Identify information security weaknesses and/or gaps in the customer’s current operations and work with the customer to bring information security operations up to standards
• Cultivate trusted partner relationships with account and customer; keep consistent and open dialogue to uncover issues, challenges, risks

Benefits

• medical, dental, and vision insurance with an employer contribution
• flexible spending or health savings account
• life and AD&D insurance
• short and long term disability coverage
• paid time off
• employee assistance
• participation in a 401k program with company match