Direct-hire Application Security Architect Opportunity in Plano, TX

If this opportunity is not a good match for your skills or you are not available but know someone who is, please forward this email to them as we pay referral fees for anyone you refer that we place with a client.

Direct-hire Application Security Architect Opportunity in Plano, TX

The Application Security Architect will be a part of the F&P Business Solutions on our Software team and will report directly to the Head of Architecture. The Architect will work closely with development teams, product teams, and other teams across the organization to integrate security into the product lifecycle from design through deployment. Ideally, the Architect is a subject matter expert in defining security requirements, performing application security assessments, and providing developers with remediation guidance and advice. On any given day the Application Security Architect can be pulled in to evaluate a new system, review a proposed network change, or provide guidance on application security/coding best practices.

  • Work independently with developers, system/network administrators, product owners, and other colleagues to ensure secure design, development, and implementation of applications and networks
  • Perform security architecture design reviews of our products (primarily cloud)
  • Perform or supervise vulnerability testing, risk analyses and security assessments
  • Respond immediately to security-related incidents and provide thorough remedial solutions and analysis
  • Perform code analysis of large applications, manually and using SAST and DAST scanning solutions as well as conducting manual vulnerability analysis
  • Provide remediation guidance and recommendations to developers and administrators
  • Work with Product Development teams to help prioritize and validate urgency of mitigation of identified product vulnerabilities and security feature enhancement requests
  • Define security best practices and standards and ensure Product Development teams understand them and receive pertinent annual secure coding training
  • Work closely with the Global Security Architecture team for security standards alignment

What you need is:

  • Minimum five (5) years’ experience in software development hands-on experience and SDLC practices
  • Minimum two (2) years’ experience in the Application Security Architect role providing application security guidance to multiple product teams simultaneously
  • Experience working with development teams to build secure solutions
  • Experience breaking down complex systems and applications to find flaws
  • Proficiency in reading, writing, and auditing .Net and Angular applications and the ability to pick up new languages/technologies
  • Strong familiarity with common vulnerabilities and attack vectors
  • Knowledge of web service technologies, load balancer services (i.e. Nginx, Elastic Load Balancing, F5, etc.) and RESTful APIs
  • Knowledge of ubiquitous encryption technologies (PGP, SSH, SSL, etc.) and common authentication protocols (OpenID Connect, OAUTH, SAML, RADIUS, LDAP, KERBEROS, etc.)
  • Solid understanding of secure network and system design in both cloud (AWS etc.) and conventional environments
  • The ability to communicate complicated technical issues and the risks they pose to developers, network engineers, system administrators, and management
  • Excellent written and verbal communication skills, interpersonal and collaborative skills
  • Must be a critical thinker, with strong problem-solving skills
  • High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity
  • Self-starter, positive attitude, ability to work independently, enjoys learning and staying current with industry developments, regulations and best practices.

Preferred Experience:

  • Experience as an Application/Product Security Engineer, Architect or Developer
  • A background integrating security testing into the SDLC (preferably the SCRUM framework)
  • Experience providing security training to developers

If you have this experience, feel you are a fit for this position, and are interested, please answer the questions below:

    Your Email (required)

    Position You Are Applying For?

    What is your availability to start?

    Are you open to a direct-hire position?

    What is your current salary or pay rate?

    Are you currently eligible to work for any employer in the US?

    When is the best time to contact you and what # can you be reached at for this opportunity?

    Upload Your Resume