Title: Application Security Architect

Location: Rockville, MD or McLean, VA / DMV Area (Hybrid 3 days onsite with 2 days remote)

Duration: 6 Months with possible extension

Interview process: Pre-screen, Phone, Onsite panel

Job Summary:

We are seeking an experienced Security Architect to join the Cyber & Information Security organization. This role will focus heavily on application security, security engineering, and enterprise security architecture across modern cloud and engineering environments.

The ideal candidate will bring strong expertise in secure application design, security frameworks, cloud security, and threat mitigation while partnering closely with engineering, infrastructure, and enterprise architecture teams. This individual will help define and mature security standards, patterns, and governance across the organization while supporting emerging technologies, including AI-enabled platforms and tools.

This is a highly collaborative and hands-on role suited for someone who understands how to balance security, engineering enablement, and scalable architecture design.

Key Responsibilities:

Identify and document security requirements, standards, and approved architecture patterns across multiple security and technology teams

Consolidate security controls and practices into a unified enterprise security architecture framework

Develop and maintain standard security patterns, reference architectures, and secure design guidelines

Partner with Enterprise Architecture and engineering teams to integrate security requirements into enterprise technology initiatives

Perform application security architecture reviews for new and existing applications, platforms, APIs, and cloud services

Assist with building and maintaining security architecture frameworks and mapping security tools/capabilities to controls, risks, and threat libraries

Evaluate internal and external threats and provide recommendations for mitigation and remediation strategies

Support security engineering initiatives related to application security, identity and access management, and secure SDLC practices

Review and assess emerging AI technologies, AI-enabled platforms, and related security risks

Maintain awareness of evolving cybersecurity threats, vulnerabilities, and industry best practices

Assist with security tool evaluations, implementation guidance, and capability improvements

Collaborate with technology and engineering teams to implement secure-by-design principles across enterprise platforms

Contribute to penetration testing reviews, application vulnerability remediation efforts, and security risk assessments

Required Qualifications:

7+ years of experience in cybersecurity, security architecture, application security, or security engineering roles

Strong understanding of application security principles, secure architecture patterns, and secure software development practices

Hands-on experience with application security reviews, threat modeling, vulnerability management, or penetration testing

Experience working with cloud platforms such as Azure or Google Cloud Platform

Knowledge of identity and access management concepts and security controls

Familiarity with industry security frameworks and standards such as NIST

Experience evaluating security technologies, tools, and enterprise security controls

Ability to communicate effectively with both technical and non-technical stakeholders

Strong analytical, problem-solving, and risk assessment skills

Experience partnering closely with engineering and infrastructure teams in enterprise environments