Application Security Architect

Role: Application Security Architect

Location: Hybrid/Remote - Marlton, NJ

Experience: 10+ Years

Job Summary:

We are seeking an experienced Security Architect with specialized expertise in Burp Suite Pro to design and implement secure systems that protect our digital assets and ensure compliance with industry standards. This hybrid role offers flexibility and requires a minimum of 6 years of experience in cybersecurity and application security.

Required Skills:

• Solid understanding of secure coding principles (OWASP Top 10, Application Security Verification Standard, for example)
• Knowledge of industry standard controls and frameworks such as NIST, International Organization for Standardization (ISO), Center for Information Security (CIS), and System and Organization Controls 2 (SOC 2).
• Application Security Tools like Sonatype, BurpSuite, Checkmarx, etc.

Certifications Required:

• Industry Certifications such as CISSP, CISM, CISA, CEH/CSA, SSCP are considered a plus

Key Responsibilities:

• Work with developers, architects, project leads/managers, business analysts, and others in determining security requirements for new or updated applications to ensure that these requirements are met as part of the software development lifecycle.
• Work alongside IT partners and act as the subject matter expert for all information security questions, concerns, and guidance as they pertain to application security.
• Develop, document and present training material on security-related topics and develop application security-related development standards and controls alongside other governance and architecture teams.
• Assist with the administration and maintenance of industry leading security tools in the Identity Governance and Administration (IGA) and Privileged Access Management (PAM) such as Saviynt.
• Analyze results from dynamic & static code testing (DAST and SAST).
• Act to integrate application/software security tools within existing development processes.
• Assist with the planning and tracking of application penetration tests as they are performed by an approved third-party vendor.
• Identify and help resolve false positive findings in security assessment results.
• Generate reports on assessment findings and help guide and track remediation tasks.
• Assist with formulation and distribution of security metrics that demonstrate assessment coverage and remediation effectiveness.
• Stay up to date on new and emerging cybersecurity threats and attack vectors

Qualifications:

• Strong expertise in Burp Suite Pro and its application in security architecture.
• Proven experience in conducting security assessments and vulnerability testing.
• Demonstrated ability to design and implement secure systems.
• Excellent analytical and problem-solving skills for incident response.
• Proficiency in developing and maintaining security documentation.
• Strong communication skills for effective collaboration across teams.
• Up-to-date knowledge of security trends, tools, and best practices.