"Alerted.org

Description

Overview The Senior Application Security Architect is responsible for designing, implementing, and overseeing enterprise-wide application security architecture and standards. This role focuses on establishing security frameworks, conducting architecture reviews, developing security baselines, and leading strategic security initiatives that have broad impact across the organization. The position requires a blend of technical expertise, architectural thinking, and leadership to embed security throughout the software development lifecycle. Job Responsibilities: • Design and establish enterprise application security architecture frameworks and reference models aligned with business objectives and risk tolerance • Lead architecture reviews of applications and systems to identify security gaps and recommend appropriate controls • Develop and maintain security baselines, standards, and patterns for different technology stacks (web, mobile, API, microservices) and deployment models • Create and evolve threat modeling methodologies (STRIDE, PASTA, OCTAVE) and facilitate threat modeling sessions with development teams • Define secure coding standards and security requirements for different application types based on data classification and risk profile • Architect security solutions for authentication, authorization, encryption, and secure communication channels • Establish security guardrails for cloud-native applications, serverless architectures, and infrastructure-as-code implementations • Design and implement API security strategies including OAuth/OIDC flows, API gateways, and rate limiting • Integrate security architecture principles into CI/CD pipelines to support DevSecOps initiatives • Evaluate and recommend security tools and technologies for the enterprise security tech stack • Develop security architecture roadmaps and guide implementation of security capabilities • Partner with development teams to design secure solutions that balance security requirements with business needs • Lead strategic security initiatives with enterprise-wide impact • Leverage GenAI technologies to enhance security architecture reviews and automate security analysis • Maintain documentation of security architecture decisions, patterns, and reference implementations • Develop and deliver security architecture training to raise security awareness among developers and architects • Stay current with emerging security threats, technologies, and architectural approaches • Perform security design reviews for new applications and major changes to existing applications • Architect secure data handling practices including encryption at rest and in transit Qualifications: • Bachelor's degree in Computer Science, Information Security, or related technical field required • 5+ years of experience in application security, with at least 2 years in security architecture roles • Deep knowledge of secure design principles, threat modeling methodologies, and security patterns • Experience designing security controls for cloud environments (AWS, Azure, GCP) • Proficiency in evaluating and implementing application security tools (SAST, DAST, IAST, SCA) • Hands-on experience with security testing tools such as Burp Suite, OWASP ZAP, and other proxy tools • Experience with secure software development practices and DevSecOps implementation • Strong understanding of OWASP Top 10, SANS CWE, and other security standards • Knowledge of secure authentication mechanisms (MFA, SSO, OAuth 2.0, SAML, OIDC) • Experience with secure API design and implementation of API security controls • Knowledge of regulatory requirements (PCI-DSS, GDPR, SOX, etc.) and their architectural implications • Experience with containerization, microservices, and API security • Proficiency in one or more programming languages (Java, Python, JavaScript preferred) • Experience with secure code review techniques and identifying common vulnerability patterns • Knowledge of cryptographic protocols and implementations • Experience with security requirements for modern application architectures (SPA, serverless, etc.) • Excellent communication skills with ability to translate complex security concepts to technical and non-technical audiences • Experience leading cross-functional security initiatives and influencing stakeholders • Certifications such as CSSLP, CISSP, AWS Security Specialty are highly desirable This position requires a strategic thinker who can balance security requirements with business objectives while driving the organization toward a more secure application ecosystem.

Skills

Application security, Security architecture, Aws, GenAI, Threat Modeling

Top Skills Details

Application security,Security architecture,Aws,GenAI,Threat Modeling

Experience Level

Expert Level

Pay and Benefits

The pay range for this position is $60.00 - $70.00/hr.

Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:

• Medical, dental & vision • Critical Illness, Accident, and Hospital • 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available • Life Insurance (Voluntary Life & AD&D for the employee and dependents) • Short and long-term disability • Health Spending Account (HSA) • Transportation benefits • Employee Assistance Program • Time Off/Leave (PTO, Vacation or Sick Leave)

Workplace Type

This is a hybrid position in Rockville,MD.

Application Deadline

This position is anticipated to close on Jul 18, 2025.

h4>About TEKsystems:

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We’re a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We’re a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We’re strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We’re building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.