Search Jobs

Sr. Application Security Architect

Description

The application security architect will work closely with the enterprise technical and security teams to understand and define security programs, strategies, standards and priorities and bring them to the application teams. The security application architect will be responsible for defining the enterprise security requirements, technical specifications, and standard solutions. The application security architect will also be required to identify potential security gaps within the integrated systems by constant review of application components, data access dynamics and transaction flow.

Job Details:

  • Develop and implement the application security program in-line with industry best practices and compliance
  • Serves as highest level technical architecture expert for software development / infrastructure teams at the program level
  • Determine and develop architectural approaches and solutions, conduct business reviews, document current systems, and develop recommendations of how to proceed with the applications
  • Has extensive experience delivering IT solutions; developing designs and architecture documents that the rest of the SDLC teams can follow
  • Develops and drives short & long-term architecture strategy for the overall IT project portfolio for key business segments
  • Uses a broad and deep understanding of technical concepts in multiple specialized fields to develop solutions to problems and critical design issues
  • Provide guidance on and oversee secure application coding practices conducted by other technical teams
  • Leads and facilitates sync meetings between product innovation teams, infrastructure, and architecture to build security in their processes and projects
  • Advises and influences business leaders, at different levels, regarding corporate security strategy, initiatives, services, and requirements
  • Facilitates and drives to completion of cross functional activities to meet security tactical and strategic objectives
  • Ensure application security program alignments with industry frameworks such as the NIST Cyber Security Framework, ISO27001, FFIEC Cyber Security Framework, PCI, and others
  • Drive enforcement of the enterprise information security strategy and drive short and long term efforts to achieve an approach that is consistent with the risk appetite
  • Establish and report on relevant metrics and KPIs to communicate status, demonstrate progress and build awareness of information security program performance
  • Develop appropriate risk treatment and mitigation options to address security risks identified during security review or audit
  • Provide detailed direction and designs for ensuring security controls operating across the enterprise (end to end) are properly deployed and producing data to support the information security function
  • Translate technical vulnerabilities into business risk terminology for business units and recommend corrective actions to customers and project stake-holders

Additional Details:

  • Maintains a high energy level and demonstrates a desire to succeed
  • Demonstrates a strong work ethic, able to multi task and ability to work well under pressure
  • Able to plan and organize work to achieve targeted goals with minimal supervision; is results-oriented and accountable for own actions
  • Performs rigorous, structured and fact-based problem analysis; able to quickly assess an issue and apply creative resolutions
  • Leveraging creative solutions when problem-solving, collaborating effectively as a team, yet functioning well with independent responsibilities, especially multitasking and extreme attention to detail
  • Excellent verbal and written communication skills including the ability to author and present materials ranging from detailed technical specifications to high-level presentations
  • Solid problem solving and analytical skills; able to quickly digest any issue/problem encountered and recommend an appropriate solution
  • Pragmatic understanding of security problems as a mix of technology and process issues with the ability to pursue solutions at both layers within the organization
  • Performs rigorous, structured and fact-based problem analysis; able to quickly assess an issue and apply creative resolutions
  • Build strong cross-organizational relationships and effectively influence staff across the IT organization and broader enterprise
  • Adaptive schedules and work assignments, including willingness to travel domestically and globally, when required, and extended work hours
  • Good understanding of application security principles
  • Experience in application or data security and vulnerability management
  • Experience in static and dynamic scans and security monitoring tools
  • Programing background and working experience in SDLC and software development tools such as Eclipse, Maven, Jenkins or similar
  • Analytical and problem-solving skills
  • Big data management experience is a plus

 

Education & Certifications

  • BS/MS degree in Computer science or related fields
  • An IT Security certification, similar to CISA or PCI regulatory implementation experience is a plus
  • 10 years+ of experience in IT/IS

Related Jobs

Sr. Virtualization Engineer   Chicago, Illinois
July 31, 2018
HRIS Analyst   Arlington, Texas
July 18, 2018
Sr. IT Auditor   Arlington, Texas
July 18, 2018
Sr. Systems Engineer   Fort Worth, Texas
July 18, 2018
Network Engineer   Fort Worth, Texas
July 11, 2018