Application Security Architect

Title: Application Security Architect
Location : Rockville, Maryland
Target Start Date : ASAP
Type: contract
Pay Rate: DOE

We are seeking a Senior Application Security Architect to lead the design and implementation of robust, enterprise-wide application security architecture. This role is instrumental in shaping security strategy, setting technical standards, and integrating security practices across the software development lifecycle (SDLC). You'll collaborate with cross-functional teams to embed security into every layer of the application stack, ensuring both innovation and protection align with business objectives.

Key Responsibilities

• Architectural Leadership
  • Design and maintain enterprise-wide application security frameworks, standards, and reference models.
  • Lead architectural reviews and design sessions to identify risks and recommend security controls.
• Security by Design
  • Define secure coding standards and security requirements tailored to application type, risk, and data sensitivity.
  • Architect solutions for authentication, authorization, encryption, and secure communications.
• Threat Modeling & Risk Management
  • Develop and facilitate threat modeling (e.g., STRIDE, PASTA, OCTAVE) and integrate findings into development cycles.
  • Establish security guardrails for cloud-native, serverless, and infrastructure-as-code deployments.
• DevSecOps & Automation
  • Integrate security into CI/CD pipelines to support DevSecOps practices.
  • Leverage GenAI technologies to enhance architecture reviews and automate security assessments.
• Cloud & API Security
  • Design API security strategies including OAuth/OIDC, gateway enforcement, and rate limiting.
  • Build secure patterns for multi-cloud environments (AWS, Azure, Google Cloud Platform).
• Collaboration & Enablement
  • Partner with engineering teams to design secure, scalable solutions that align with business goals.
  • Develop security roadmaps and lead enterprise-wide security initiatives.
  • Deliver security training and promote awareness among developers, architects, and stakeholders.
• Standards & Compliance
  • Define and maintain security baselines across platforms (web, mobile, microservices).
  • Ensure compliance with regulations (e.g., PCI-DSS, GDPR, SOX) through sound architectural practices.
  • Document decisions, reusable patterns, and reference implementations.

Qualifications

• Bachelor's degree in Computer Science, Information Security, or related field
• 5+ years in application security, with 2+ years focused on security architecture
• Deep knowledge of secure design principles, threat modeling, and application security patterns
• Hands-on experience with SAST, DAST, IAST, SCA tools, and manual testing (Burp Suite, OWASP ZAP, etc.)
• Proficiency in secure development and DevSecOps practices
• Familiarity with cloud security (AWS, Azure, Google Cloud Platform) and containerized architectures
• Expertise in secure API design and modern authentication protocols (OAuth 2.0, OIDC, SAML, MFA)
• Strong coding skills (preferred: Java, Python, JavaScript) and experience with code review
• Knowledge of regulatory requirements and their impact on security design
• Excellent communication skills to bridge technical and business perspectives
• Experience leading strategic initiatives and influencing cross-functional teams
• Preferred certifications: CISSP, CSSLP, AWS Security Specialty, or similar

Ideal Candidate
You're a strategic thinker who can architect secure solutions at scale, drive organizational change, and balance risk with innovation. Your ability to communicate complex security concepts and partner with engineering teams makes you a trusted advisor in shaping secure digital experiences.

Welcome to ConsultNet and the family of companies, Tekne, SaltClick, TechBridge, and OmniMedia. As a premier national provider of technology talent and solutions, our expertise spans across project services, contract-to-hire, direct placement, and managed services both onshore and nearshore.

Celebrating more than 25 years of partnership with a diverse client base, we've crafted rewarding opportunities for our consultants, fostering high-performing teams that deliver impactful results.

Over the last few years thousands of consultants have found their calling with us in roles that have made a meaningful impact on their lives, enhanced their career, challenged them, and propelled them towards achieving their personal and professional goals. At the ConsultNet family of companies, we believe effective communication is crucial in aligning the right job with your unique skills and professional aspirations. To us, it's all about the personal approach we take and the values we uphold.

Our comprehensive service offerings cover a wide range of technology positions across key markets nationwide. Client more at .

We champion equality and inclusivity, proudly supporting an Equal Opportunity Employer policy. We welcome applicants regardless of Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other status protected by law.