My Blog

Application Security Architect

ABOUT THE ROLE

We are seeking a seasoned Senior Application Security Architect to lead and shape the secure architecture of our software products and platforms. This role spans on-prem, hybrid, and cloud (SaaS) environments. Leading the development and implementation of application security architecture, embedding security into our SDLC, and delivering ‘secure-by-design’ solutions that align with business goals, regulatory obligations, and modern threat landscapes.

WHAT YOU’LL BE DOING

  • Define and mature the application security architecture strategy, standards, paved roads and guardrails across product teams and platforms.
  • Lead threat modeling and architecture review processes for new and evolving systems, including web, API, microservices, cloud-native, containerized, and hybrid deployments.
  • Oversee secure design reviews, code reviews (manual and tool-based), and vulnerability/weakness assessments across development teams.
  • Embed security into the SDLC: partner with DevOps, development, platform, and operations teams to integrate security testing tools such as ASPM, API Security, WAF, etc.
  • Develop reusable secure components, reference architectures, and ‘paved roads’ that accelerate secure development and maintain consistency.
  • Monitor and report on application security posture, metrics (e.g., vulnerability trends, mean time to remediation, code coverage) and drive continuous improvement.

WHAT WE ASK OF YOU

  • 8–10+ years of experience in application security, secure software development, or security architecture roles.
  • Demonstrated experience designing secure architectures across cloud-native, hybrid, and/or on-prem environments.
  • Strong programming or code experience in languages such as Java, React, JavaScript
  • Familiarity with application security frameworks and maturity models (SAMM, BSIMM)
  • Experience integrating application security into CI/CD pipelines and DevOps workflows
  • Excellent communication skills, with the ability to translate complex security concepts to both technical and non-technical stakeholders.


Nice-to-Have:

  • Experience in gaming, fintech, regulated industries (iGaming, payments), or large-scale SaaS platforms
  • Experience building developer enablement programs such as secure coding training or champions program

APPLY NOW

Admin

Leave a Reply

Your email address will not be published. Required fields are marked *