Senior Product Security Architect

Expedia GroupAustin, TX
2d
Match Resume

About The Position

Expedia Group brands power global travel for everyone, everywhere. We design cutting-edge tech to make travel smoother and more memorable, and we create groundbreaking solutions for our partners. Our diverse, vibrant, and welcoming community is essential in driving our success. Why Join Us? To shape the future of travel, people must come first. Guided by our Values and Leadership Agreements, we foster an open culture where everyone belongs, differences are celebrated and know that when one of us wins, we all win. We provide a full benefits package, including exciting travel perks, generous time-off, parental leave, a flexible work model (with some pretty cool offices), and career development resources, all to fuel our employees' passion for travel and ensure a rewarding career journey. We’re building a more open world. Join us. Senior Product Security Architect Our Technology Team partners with teams across Expedia Group to create innovative products, services, and tools to deliver high-quality experiences for travelers, partners, and our employees. A singular technology platform powered by data and machine learning provides secure, differentiated, and personalized experiences that drive loyalty and traveler satisfaction. The Product Security Architecture team partners with product, engineering, and platform teams to ensure security and privacy are built into Expedia Group products by design, from ideation through operations. We enable our business partners to build resilient, future-ready solutions that advance Expedia Group's security posture and operational velocity. We focus on secure-by-design product architecture, security assessments, threat modeling, and continuous verification of security requirements across our business products and platforms. You will join a small, senior team of hands-on product security architects who work across domains and technologies, helping teams make pragmatic security decisions that enable innovation at scale.

Requirements

  • Bachelor’s degree in Computer Science or a related technical field; or equivalent related professional experience.
  • 10+ years of product security and development experience
  • Extensive experience performing application threat modeling
  • Extensive experience conducting architecture reviews to find and evaluate application and infrastructure security risks
  • Significant experience in the last several years applying Generative AI in software development and for end users, ideally in the context of a medium or large enterprise.
  • Deep understanding of modern product development practices and CI/CD and how AI can change and improve these practices to increase both quality and velocity.
  • Familiarity with ‘agentic’ architectures including SDKs, context engineering, MCPs, authorization.

Nice To Haves

  • Expertise in public cloud platforms (AWS is preferred), containerization and orchestration (Kubernetes, Docker), and related technologies.
  • Excellent communication and collaboration skills, with the ability to work effectively with both technical and non-technical stakeholders.
  • Track record of setting and evolving security architecture standards, patterns, and guardrails for complex, multi-tenant or multi-domain platforms, and driving their adoption across diverse engineering teams.
  • Experience operating product security at scale in cloud-native environments (such as large microservices architectures), including secure service-to-service communication, token-based auth, and secret and certificate management.
  • Deep experience conducting and scaling threat modeling, security design reviews, and architecture risk assessments, and using insights to shape platform capabilities, reusable controls, and security automation.
  • Familiarity with AI-driven systems, tools, or workflows and applying AI/ML concepts to real world products, including leveraging AI/ML‑enabled code analysis, anomaly detection, or security automation; safely integrates and operates AI/ML‑enabled solutions that improve security posture, detection, and response.
  • Demonstrated experience taking products from concept to scaled adoption by partnering with product and engineering leadership to embed security requirements into product vision, architecture, and roadmaps, and to measure and report on security outcomes.

Responsibilities

  • Serve as a trusted product security architecture advisor to product, engineering, and platform teams, helping them design secure, highly available, and privacy-aware products and services.
  • Lead and facilitate threat modeling and security assessments for new and evolving products, services, and platforms, translating findings into clear, actionable recommendations.
  • Partner closely with product and engineering leaders to embed security requirements into product roadmaps, design reviews, and delivery processes without slowing down innovation.
  • Provide thought leadership around enabling and applying AI across the Product Security org.
  • Be a change agent influencing and scaling the adoption of AI-enabled security tooling and best practices across the product security organization.
  • Drive continuous verification of product security controls and requirements through AI-enabled automation and integration with existing product security tooling.
  • Communicate complex product security and architecture trade-offs in a clear, outcome-focused way to both technical and non-technical stakeholders, from senior ICs to senior leadership.
  • Mentor and coach product managers, engineers, and architects to raise the bar on product security literacy and design thinking across the organization.
  • Contribute to the broader Expedia Group security strategy by identifying emerging product security risks and technology trends and proposing pragmatic, long-term architecture approaches.
  • Contribute to creating a culture of continuous learning, data-driven decisions, and improvements.
  • Collaborate across IT and Information Security teams to ensure end to end coverage across the product lifecycle – from concept and design through build, launch and operations.

Benefits

  • full benefits package, including exciting travel perks, generous time-off, parental leave, a flexible work model (with some pretty cool offices), and career development resources
  • medical/dental/vision
  • paid time off
  • Employee Assistance Program
  • wellness & travel reimbursement
  • travel discounts
  • International Airlines Travel Agent (IATAN) membership

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Job Search Resources

Similar Senior Product Security Architect job opportunities

Product Security Architect
Aptiv
Aptiv • Troy, MI9d • Hybrid
Product Security Architect
Aptiv
Aptiv • Troy, MI10d • Hybrid
Product Security Architect
Aptiv
Aptiv • Troy, MI6d • Hybrid
Principal Product Security Architect
Daimler Truck
Daimler Truck • Portland, OR2d • Hybrid
🔥 New JobPrincipal Product Security Architect
Daimler Truck North America
Daimler Truck North America • Portland, OR1d • Hybrid
Embedded Product Security Architect
Sandisk
Sandisk • Irvine, CA1d • Onsite
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service