Application Security Architect Position Available In Steuben, New York
Tallo's Job Summary: This job listing in Steuben - NY has been recently added. Tallo will add a summary here for this job shortly.
Job Description
Application Security Architect 4.5 4.5 out of 5 stars Atlanta, NY 14808
Job Title:
Application Security Architect Job Location:
Phoenix, AZ or Atlanta, GA(PHX preferred)
Interview:
Virtual Job Type:
12 Months C2
H Note:
Only W2 and non-sponsorship
Job Description:
Client is seeking a seasoned Security Architect with 7+ years of experience in application security and cloud-native development, primarily within Google Cloud Platform (GCP). The role involves driving secure-by-design principles across the SDLC and collaborating with cross-functional teams to implement scalable and secure systems.
Key Responsibilities:
Design and implement application security architecture for GCP-hosted services and applications Ensure secure-by-design initiatives across SDLC (threat modeling, risk assessments, architectural reviews) Produce and review Architecture Decision Records (ADRs) Collaborate with software engineers, DevOps, security teams, and cloud architects Define secure coding standards and security-focused CI/CD pipelines Provide guidance on security tools (MAST, SAST, DAST, SCA, IaC scanning, secret detection) Develop security design patterns and reusable reference architectures Monitor emerging GCP security features and recommend adoption Support incident response and application-layer forensics Guide remediation strategies and participate in audits and compliance Provide architectural governance and review projects for alignment Mentor engineering teams on solution architecture Participate in architecture and engineering discussions Introduce architectural paradigms and perform POCs Communicate architectural strategy to senior leaders
Qualifications:
7+ years in application security, software engineering, or security architecture 3+ years hands-on GCP experience (IAM, Cloud Run, GKE, Cloud Functions, VPCs, Cloud Armor) Strong knowledge of GCP Compute, Storage, Networking, Data, and Security Deep understanding of SSDLC and cloud-native patterns Experience with security controls in CI/CD (Jenkins, GitHub, GitHub Actions) Proficiency in one or more programming languages (Python, Java, Go, Node.js) Familiar with OWASP Top 10, SANS CWE Top 25, STRIDE threat modeling Strong communication skills for technical and executive stakeholders At least one security certification (e.g., GDSA, GCAD, GWAT, GWEB, GPEN, GCPN, GXPN) Bonus certifications:
SABSA, TOGAF, GCP
PCA
