Senior Application Security Architect jobs in United States
cer-icon
Apply on Employer Site
company-logo

Tential Solutions · 5 hours ago

Senior Application Security Architect

positionRockville, MD
timeContract
remoteOnsite
senioritySenior Level
date5+ years exp

Tential Solutions is seeking a Senior Application Security Architect responsible for designing, implementing, and overseeing enterprise-wide application security architecture and standards. The role focuses on establishing security frameworks, conducting architecture reviews, and leading strategic security initiatives that impact the organization.

Human ResourcesInformation Technology
check
Growth Opportunities
check
H1B Sponsor Likelynote
Hiring Manager
Will Bartolotta
linkedin

Responsibilities

Design and establish enterprise application security architecture frameworks and reference models aligned with business objectives and risk tolerance
Lead architecture reviews of applications and systems to identify security gaps and recommend appropriate controls
Develop and maintain security baselines, standards, and patterns for different technology stacks (web, mobile, API, microservices) and deployment models
Create and evolve threat modeling methodologies (STRIDE, PASTA, OCTAVE) and facilitate threat modeling sessions with development teams
Define secure coding standards and security requirements for different application types based on data classification and risk profile
Architect security solutions for authentication, authorization, encryption, and secure communication channels
Establish security guardrails for cloud-native applications, serverless architectures, and infrastructure-as-code implementations
Design and implement API security strategies including OAuth/OIDC flows, API gateways, and rate limiting
Integrate security architecture principles into CI/CD pipelines to support DevSecOps initiatives
Evaluate and recommend security tools and technologies for the enterprise security tech stack
Develop security architecture roadmaps and guide implementation of security capabilities
Partner with development teams to design secure solutions that balance security requirements with business needs
Lead strategic security initiatives with enterprise-wide impact
Leverage GenAI technologies to enhance security architecture reviews and automate security analysis
Maintain documentation of security architecture decisions, patterns, and reference implementations
Develop and deliver security architecture training to raise security awareness among developers and architects
Stay current with emerging security threats, technologies, and architectural approaches
Perform security design reviews for new applications and major changes to existing applications
Architect secure data handling practices including encryption at rest and in transit

Qualification

Application Security ArchitectureThreat Modeling MethodologiesCloud Security ControlsSecurity Testing ToolsSecure Software DevelopmentAPI Security DesignProgramming LanguagesCryptographic ProtocolsSecurity CertificationsCommunication SkillsCross-Functional Leadership

Required

Bachelor's degree in Computer Science, Information Security, or related technical field required
5+ years of experience in application security, with at least 2 years in security architecture roles
Deep knowledge of secure design principles, threat modeling methodologies, and security patterns
Experience designing security controls for cloud environments (AWS, Azure, GCP)
Proficiency in evaluating and implementing application security tools (SAST, DAST, IAST, SCA)
Hands-on experience with security testing tools such as Burp Suite, OWASP ZAP, and other proxy tools
Experience with secure software development practices and DevSecOps implementation
Strong understanding of OWASP Top 10, SANS CWE, and other security standards
Knowledge of secure authentication mechanisms (MFA, SSO, OAuth 2.0, SAML, OIDC)
Experience with secure API design and implementation of API security controls
Knowledge of regulatory requirements (PCI-DSS, GDPR, SOX, etc.) and their architectural implications
Experience with containerization, microservices, and API security
Experience with secure code review techniques and identifying common vulnerability patterns
Knowledge of cryptographic protocols and implementations
Experience with security requirements for modern application architectures (SPA, serverless, etc.)
Excellent communication skills with ability to translate complex security concepts to technical and non-technical audiences
Experience leading cross-functional security initiatives and influencing stakeholders

Preferred

Proficiency in one or more programming languages (Java, Python, JavaScript preferred)
Certifications such as CSSLP, CISSP, AWS Security Specialty are highly desirable

Company

Tential Solutions

twittertwittertwitter
company-logo
We put people first. We’re your trusted partner - empowering you with top talent and solutions to stay competitive in today’s dynamic market.
dateFounded in 2003
location
Annapolis, Maryland, USA
people-size501-1000 employees
web-link
https://www.tential.com

H1B Sponsorship

Tential Solutions has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2024 (2)
2023 (1)
2022 (3)
2020 (11)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Shane Ireland
Chief Executive Officer
linkedin
leader-logo
Quinn Salamandra
Co-Founder
linkedin

Recent News

Australian Financial Review
PE giant EQT pays $250m for Potentia’s NewBook; 6.5 times money
2024-05-02
Business Journals
IT company Tential Solutions set to open first Carolinas office in Charlotte
2024-04-12
Company data provided by crunchbase