Application Security Architect - £80,000 - £90,000 base, 15% bonus, + Great benefit package
We are seeking an Application Security Architect to help shape secure architectures, define security standards, and drive the adoption of security patterns across development projects. This role will strengthen application security by establishing defensible security architectures that protect customers, partners, and team members.
Key Responsibilities:
* Lead security architecture and design engagements, including threat modeling for strategic platforms with modern tech stacks.
* Drive security architecture decisions and guide security implementations for critical systems.
* Champion Security and Privacy by design principles with architects and development teams.
* Develop security architecture patterns, design artifacts, and standards aligned with industry practices.
* Identify security design flaws, define requirements, and improve architecture patterns.
* Create security standards for front-end and back-end technologies; advise on secure application and web services development.
* Establish secure DevOps and GitOps blueprints with leading tools and solutions.
* Provide security design guidance for evolving architectural patterns and migration paths.
* Select technical controls to strengthen application runtime security.
Experience and Skills Required:
* Expertise in application security architecture, design principles, and threat modeling.
* Knowledge of Kubernetes, Docker, and CI/CD tools (GitHub Actions or similar).
* Familiar with application security frameworks, SDLC methodologies, and technologies.
* Understanding of application attack tactics (MITRE Framework) and security models (OpenSAMM, BSIMM).
* Proficiency in security frameworks and standards (NIST, OWASP, SANS, GDPR).
* Certifications like CISSP, CSSLP, GDSA, or GWEB are a plus.
The company offers a comprehensive benefits package and supports your continuous professional development through training programs and resources. This is an opportunity to bring your security expertise to a fast-paced environment, working alongside innovative engineers to shape the company’s security practices.