Senior Application Security Architect, Technology Architecture

Category:

Application Development

Employment Type:

Direct Hire

Reference:

5609-47242952

Senior Application Security Architect, Technology Architecture with Large Insurance Company

Hybrid Role- 3x onsite per week in either Holmdel, NJ, Bethlehem PA, Hudson Yards, NYC

Salary Range- 160k-185 plus 15% bonus

• MUST be Security Architect, NOT a solution architect
• Bachelor's degree in a STEM discipline required; Master's degree preferred.
• 10+ years of experience in cybersecurity, with at least 7 years in application security architecture roles.
• Proven experience designing and implementing secure architectures in cloud environments- AWS
• Deep knowledge of secure software development practices, including threat modeling, secure coding, SAST/DAST/IAST, and OSS governance.
• Strong experience in securing APIs (OAuth, OIDC, JWT, mTLS), containers, Kubernetes, and microservices-based architectures.
• Understanding of modern AI/ML architecture and emerging GenAI security challenges, including model integrity, hallucination prevention, and responsible AI principles.
• Familiarity with industry frameworks and standards (e.g., OWASP Top 10, NIST 800 series, ISO 27001, MITRE ATLAS).
• Excellent communication and presentation skills, with the ability to engage stakeholders at all levels, including executive leadership.
• Demonstrated leadership in cross-functional initiatives and mentoring of junior architects or engineers.
• Preferred Certifications
• CISSP, CISM, AWS/Azure/GCP Security Certifications or equivalent security credentials
• Experience with SAFe or other Agile framework

• Define, communicate, and implement application security strategies and architectural standards across hybrid environments (cloud and on-premises).
• Lead the development and adoption of security-by-design principles within modern software development practices (Agile, DevSecOps, CI/CD).
• Partner with engineering, product, and platform teams to embed robust security controls into software architecture, APIs, microservices, and containers.
• Guide secure design for AI and GenAI systems-including secure model development, data protection, model governance, adversarial testing, and emerging risks (e.g., prompt injection, data leakage).
• Conduct architecture reviews, threat modeling, and risk assessments for high-value assets, APIs, cloud-native services, Container technologies, and open-source software.
• Recommend and enforce secure deployment patterns for SaaS, PaaS, and IaaS (AWS) models
• Familiar with Runtime Application Self-Protection (RASP), WAFs, SIEMs, and Secrets management Technologies
• Evaluate and pilot emerging tools and technologies aligned with the organization's cybersecurity strategy-particularly in the AppSec and AI security domains.
• Maintain strong relationships with internal stakeholders and external vendors to influence technology roadmaps and drive secure outcomes.
• Develop and maintain prescriptive blueprints and reference architectures in collaboration with business and solution architects.
• Deliver executive-level reporting on application security risks, strategy, and program effectiveness

• CISSP, CISM, AWS/Azure/GCP Security Certifications or equivalent security credentials
• Experience with SAFe or other Agile framework

• Experience building or securing AI/ML platforms, GenAI toolchains, or responsible AI initiatives.