SeniorSecurity Solutions Architect

Senior Security Solutions Architect

hybrid in Dallas, TX , Mclean, VA, or Memphis, TN

rate only on w2



Must haves

App Dev experience

Security Experience

Architecture Experience - Hands ON!!!



Job Description:

High-Level Summary

• Senior Security Solutions Architect supporting Hilton s customer-facing platforms (web, mobile, APIs, payments, property systems)
• Focus on embedding security into architecture design across the SDLC
• Heavy collaboration with engineering, product, architecture, and security teams
• Responsible for end-to-end secure designs, reference architectures, and governance reviews
• Highly strategic + hands-on architecture role (not pure security ops)

Key Responsibilities

• Lead secure solution design across APIs, cloud, identity, data flows, and integrations
• Translate business/product requirements secure architecture patterns
• Develop security reference architectures + reusable patterns
• Conduct architecture reviews + risk identification + mitigation planning
• Create artifacts: diagrams, data flows, security controls, design documentation
• Partner cross-functionally to balance security, scalability, and delivery speed

Core Requirements

• 7+ years in tech (engineering, security, architecture)
• 5+ years hands-on engineering or app delivery experience
• 3+ years solution/enterprise architecture
• Strong experience in one or more:
  • Application/Product Security
  • API Security
  • IAM / Customer Identity
  • Cloud Security (AWS preferred)
  • Cryptography / Data protection
• Deep understanding of:
  • OAuth2, OpenID Connect, SAML
  • Secure SDLC + CI/CD security
  • Encryption, secrets management, logging/monitoring
• Experience supporting enterprise-scale, customer-facing platforms

Nice to Have

• Certifications (CISSP, CCSP, AWS, TOGAF, etc.)
• Experience in hospitality, ecommerce, payments, or travel
• Familiarity with frameworks (PCI, NIST, SOC2, ISO, GDPR)

Screening Questions (Recruiter Call - Conversational)

Background & Fit

• Walk me through your experience in security architecture vs. hands-on engineering
• What types of applications or platforms have you supported (web, mobile, APIs, payments, etc.)?
• Have you worked in customer-facing, enterprise-scale environments? What did that look like?

Architecture Experience

• Can you describe a recent example where you designed a secure end-to-end solution?
• What components did you focus on (APIs, identity, cloud, integrations, etc.)?
• How do you typically balance security with performance and user experience?

Security Expertise

• What s your experience with API security and authentication protocols like OAuth2 or OpenID Connect?
• How have you handled encryption, key management, or secrets management in past roles?
• How do you approach threat modeling or identifying risks early in design?

Cloud & Engineering Alignment

• What cloud environments have you worked in (AWS, Azure, etc.)?
• How do you ensure your security architecture is adopted by engineering teams?
• Have you worked within CI/CD pipelines or DevSecOps models?

Collaboration & Influence

• Tell me about a time you had to push back on a design for security reasons
• How do you communicate complex security concepts to non-security stakeholders?
• What role do you typically play in architecture reviews or governance forums?

Operational & Program Alignment

• How do you ensure consistency across multiple teams and projects?
• Have you built or contributed to reference architectures or reusable patterns?
• What metrics or indicators do you use to measure secure delivery success?

Logistics & Close

• Are you open to a hybrid schedule (2-3x/week onsite) in Dallas, McLean, or Memphis?
• What s your current situation and availability/timeline?
• Confirm target rate vs. max bill ($130/hr)

Red Flags to Watch

• Pure security ops (SOC, IR) with limited architecture experience
• No hands-on engineering background
• Lack of experience with customer-facing or high-scale systems
• Can t articulate design decisions or trade-offs

Top Green Flags

• Strong mix of engineering + architecture + security
• Experience owning end-to-end solution design
• Comfortable influencing senior stakeholders + engineering teams
• Built repeatable security patterns/frameworks