Enterprise Application Security Architect

Overview

Remote
Depends on Experience
Accepts corp to corp applications
Contract - W2

Skills

Azure
Azure Security
DevSecOps
OWASP
penetration testing
web applications
Microsoft Power
Enterprise Application Security
Kubernetes
MongoDB
API
APPLICATION SECURITY
ENTERPRISE APPLICATION
CISSP
CISM
CEH
CSSLP

Job Details

Job Title: Enterprise Application Security Architect

Location: Remote

Rate: Long Term

Job Summary:

We are seeking an experienced and proactive Enterprise Application Security Architect to join our team. The ideal candidate will have a deep understanding of enterprise application architecture,

security principles, and best practices, have 6 or more years of experience working through penetration testing t address and solve identified risks at all levels. The candidate will be responsible for designing.

and implementing robust security solutions to protect our organization s enterprise applications from cyberthreats and vulnerabilities. The Enterprise Application Security Architect will work closely with

crossfunctional teams to ensure that security is integrated into all phases of the software development lifecycle. Extremely familiar with NIST framework covering Artificial Intelligence, Security and SDLC.

Responsibilities

  1. Design, develop and document comprehensive security architecture for enterprise applications, considering both current and future needs.
  2. Conduct system or application security analysis and document the security controls accordingly.
  3. Collaborate with software development teams to integrate security controls and best practices into the application development process.
  4. Conduct security assessments and risk analyses of existing and new enterprise applications to identify vulnerabilities and recommend remediation strategies.
  5. Define and enforce security policies, standards, and procedures for enterprise applications, ensuring compliance with regulatory requirements and industry standards.
  6. Evaluate and recommend security technologies and tools to enhance the security posture of enterprise applications.
  7. Provide guidance and support to IT teams on securityrelated issues, including incident response, threat detection, and mitigation.
  8. Stay uptodate on emerging security threats, trends, and technologies to continuously improve the organization s security posture.

Requirements:

  1. Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
  2. Proven experience of 15 years working as an application security architect or a similar role in a large enterprise environment.
  3. Indepth knowledge of enterprise application architecture, including web applications, mobile applications, and cloudbased applications.
  4. Strong understanding of security principles, protocols, and standards (e.g., OWASP Top 10, SANS Critical Security Controls, ISO 27001).
  5. Handson experience with security assessment tools and techniques, such as penetration testing, vulnerability scanning, and code review.
  6. Familiarity with secure coding practicesand frameworks (e.g., Secure SDLC, DevSecOps).
  7. Proficient in implementing and managing security controls based on industry frameworks such as SOC2, NIST, CIS hardening benchmarks, least privilege, and Azure Security Center.
  8. Excellent communication and collaboration skills, with the ability to work effectively with crossfunctional teams and stakeholders.
  9. Experience working with Azure B2C, API Management tools.
  10. Relevant certifications (e.g., CISSP, CISM, CSSLP, CEH) are highly desirable.
  11. Strong analytical and problemsolving skills, with a keen attention to detail.
  12. Technologies: C#, React, Node, Azure SQL, MongoDB Atlas, Docker, Kubernetes, Azure Cloud, GitHub, GitHub Advanced Security, Microsoft Sentinel, Qualys, .net, and Microsoft Power Platforms Blockchain or trusted fabric technologies