CrawlJobs Logo
Robert Half Logo Robert Half · IT - Software Development

Application Security Architect & Engineer

United States, Richmond · Job Posted March 13, 2026
Apply Position
Job Link Share

Job Description

We are looking for an experienced Application Security Architect & Engineer to join our team on a contract basis in Richmond, Virginia. In this role, you will collaborate closely with application teams to embed security into all stages of the software development lifecycle, ensuring compliance and the implementation of secure coding practices. This position offers an opportunity to make a significant impact by improving the security posture of critical applications while working in a dynamic environment.

Job Responsibility

  • Provide comprehensive security guidance and training to development and operations teams to enhance secure software practices
  • Evaluate application architecture and design to identify security risks and align them with DevSecOps principles
  • Promote and enforce secure coding standards across diverse programming languages such as JavaScript, Java, and C#
  • Conduct detailed reviews of source code to identify vulnerabilities and recommend effective remediation strategies
  • Assess and secure modern web application frameworks, including cloud technologies, APIs, microservices, and client-server models
  • Utilize application security testing tools and platforms, such as Accunetix, Veracode, Jenkins, Splunk, Rapid7, and Tenable, to identify and address security weaknesses
  • Ensure compliance with relevant security regulations and standards, including NIST 800-53 and IRS Pub 1075
  • Develop and maintain System Security Plans (SSPs) to document security policies and procedures effectively
  • Collaborate with cross-functional teams, including QA engineers and operations staff, to integrate security measures into workflows
  • Stay updated on emerging threats, technologies, and industry trends to continuously improve security practices

Requirements

  • Minimum of 5 years of experience in application security or a related field
  • Strong understanding of secure coding practices and vulnerability management
  • Proficiency in programming languages such as JavaScript, Java, C#, and SQL
  • Familiarity with Agile and Scrum methodologies to support secure software development
  • Experience with modern web application architectures, including cloud technologies and APIs
  • Expertise in using application security tools like Accunetix, Veracode, and Splunk
  • Knowledge of compliance standards such as NIST 800-53 and IRS Pub 1075
  • Excellent communication skills to convey technical concepts to both technical and non-technical audiences

What we offer

  • medical
  • vision
  • dental
  • life and disability insurance
  • eligibility to enroll in company 401(k) plan
Robert Half - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Application Security Architect & Engineer

8 matching positions

New

Physical Security Application Engineer

The Physical Security Application Engineer operates within the Design & Engineer...
Location
Location
United Kingdom , Camberley
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience designing, architecting, and commissioning physical security systems in enterprise or public sector environments
  • Hands-on delivery across enterprise VMS and access control platforms (e.g. Genetec, Milestone, Gallagher), with relevant certifications preferred
  • Strong knowledge of CCTV, access control, IP networking, and infrastructure
  • Experience producing HLDs, LLDs, and full system architecture documentation
  • Familiar with FAT, SAT, and SIT testing processes
  • Solid understanding of Windows Server, enterprise IT environments, and domain infrastructure
  • Working knowledge of integration technologies and security system protocols
  • Networking knowledge to CCNA level or equivalent
Job Responsibility
Job Responsibility
  • Work closely with clients and stakeholders to capture operational, functional, and technical requirements across the project lifecycle
  • Provide trusted advisory services, helping clients shape their security technology strategy and understand the implications of design and platform decisions
  • Support bids, tenders, and professional services engagements with credible technical input
  • Operate consultatively across all phases of an engagement, not just at the point of delivery
  • Develop High-Level Designs (HLDs) and system architectures during bid and solution stages
  • Produce Stage 4 detailed designs and Low-Level Designs (LLDs) suitable for installation and delivery
  • Design complex, multi-system integrated solutions (CCTV, Access Control, analytics, networks, and supporting infrastructure)
  • Ensure designs incorporate resilience, scalability, cybersecurity, and compliance requirements
  • Act as Design Authority across assigned projects, ensuring all deliverables align to approved designs
  • Provide technical oversight throughout installation, testing, and commissioning phases
  • Fulltime
Read More
Arrow Right
New

Physical Security Application Engineer

The Physical Security Application Engineer operates within the Design & Engineer...
Location
Location
United Kingdom , Newcastle upon Tyne
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience designing, architecting, and commissioning physical security systems in enterprise or public sector environments
  • Hands-on delivery across enterprise VMS and access control platforms (e.g. Genetec, Milestone, Gallagher), with relevant certifications preferred
  • Strong knowledge of CCTV, access control, IP networking, and infrastructure
  • Experience producing HLDs, LLDs, and full system architecture documentation
  • Familiar with FAT, SAT, and SIT testing processes
  • Solid understanding of Windows Server, enterprise IT environments, and domain infrastructure
  • Working knowledge of integration technologies and security system protocols
  • Networking knowledge to CCNA level or equivalent
Job Responsibility
Job Responsibility
  • Work closely with clients and stakeholders to capture operational, functional, and technical requirements across the project lifecycle
  • Provide trusted advisory services, helping clients shape their security technology strategy and understand the implications of design and platform decisions
  • Support bids, tenders, and professional services engagements with credible technical input
  • Operate consultatively across all phases of an engagement, not just at the point of delivery
  • Develop High-Level Designs (HLDs) and system architectures during bid and solution stages
  • Produce Stage 4 detailed designs and Low-Level Designs (LLDs) suitable for installation and delivery
  • Design complex, multi-system integrated solutions (CCTV, Access Control, analytics, networks, and supporting infrastructure)
  • Ensure designs incorporate resilience, scalability, cybersecurity, and compliance requirements
  • Act as Design Authority across assigned projects, ensuring all deliverables align to approved designs
  • Provide technical oversight throughout installation, testing, and commissioning phases
  • Fulltime
Read More
Arrow Right

Lead Application Security Architect

The Application Security Architect is a senior, influential role responsible for...
Location
Location
United Kingdom; Sweden; Poland , London; Stockholm; Łódź
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in technology, with at least 7 years in a dedicated application security or product security role
  • Demonstrated experience designing and implementing a Secure SDLC in a cloud-native environment (GCP, AWS)
  • Hands-on experience with the architecture and strategy of AppSec tools (e.g., Snyk, Checkmarx, Veracode,)
  • Experience with securing microservices architectures, APIs, and modern web/mobile applications
  • Experience with securing AI/ML systems
  • A Bachelor’s degree in a relevant field or equivalent professional experience
Job Responsibility
Job Responsibility
  • Champion and orchestrate the definition of Arrive’s global Secure Software Development Lifecycle (SSDLC), from threat modeling to secure release, in close partnership with key stakeholders across Engineering and IT
  • Develop and maintain a comprehensive set of global security standards, baselines, and guidelines for secure coding, vulnerability management, and secure architecture
  • Create and champion the strategy for our application security tooling, including SAST, DAST, IAST, and Software Composition Analysis (SCA)
  • Define and manage the application security standards for Mergers & Acquisitions, establishing clear requirements and guiding the architectural integration of acquired technologies
  • Act as a lead security consultant and strategic partner for product and engineering teams, providing expert guidance on secure design patterns and vulnerability remediation
  • Forge a dynamic partnership with the Platform Security team: co-design the security tooling roadmap, consume their platforms where they meet global standards, and introduce new architectural patterns where needed
  • Lead security architecture reviews and threat modeling sessions for new applications and high-risk features
  • Act as a senior mentor and advocate for security engineers and champions across the organization, helping to grow our security talent
  • Stay at the forefront of emerging application security threats, with a particular focus on the risks associated with AI/ML systems
  • Collaborate with Data & AI teams to develop security principles and architectural patterns for securely integrating AI into our products
  • Fulltime
Read More
Arrow Right

Principal Solutions Engineer - Application Security

As a Principal Solutions Engineer you will work closely with Wiz’s CTO, Field CT...
Location
Location
Germany
Salary
Salary:
Not provided
wiz.io Logo
Wiz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong technical background with a solid understanding of core IT, InfoSec, Cloud, and DevOps concepts
  • Proven skillset and experience with a career path focused on public cloud architecture (AWS, Azure, GCP)
  • Deep, practical knowledge of the AppSec landscape, including Application Security Posture Management (ASPM), SAST, DAST, SCA, and the operational use of SBOMs (SPDX/CycloneDX) and their practical use cases for vulnerability and license management
  • Demonstrable proficiency in one or more high-level languages (e.g., Python, Go, Rust) and/or advanced shell scripting
  • Experience and ability to code and understand developer workflows. Git, CI/CD, helm, terraform etc
  • SME level knowledge of Kubernetes and containers with the ability to architect and troubleshoot complex environments
  • Exceptional ability to present complex technical concepts to a wide range of audiences—from deeply technical developer teams to executive-level (CISO, CTO) stakeholders
  • Be passionate in regard to continuous self-improvement and learning to maintain technical leadership
  • Full professional fluency in German (written and verbal)
Job Responsibility
Job Responsibility
  • Serve as the company's top field expert in application and cloud-native security and provide technical and business-relevant feedback into Product Management based on field engagements to improve Wiz’s position and value messaging to prospects and clients
  • Collaborate with Wiz sales teams on strategic opportunities in demonstrating the business and technical value of the Wiz platform
  • Assist SEs and prospects during the POC process with advanced use cases, installation/deployment, and troubleshooting
  • Lead regular thought leadership sessions with the field teams sharing insights and approaches derived through customer engagement to improve our effectiveness in messaging and delivering value to prospective clients and existing customers
  • Assist in messaging and selling Wiz platform capabilities to prospects and customers
  • Fulltime
Read More
Arrow Right

Principal Solutions Engineer - Application Security

As a Principal Solutions Engineer you will work closely with Wiz’s CTO, Field CT...
Location
Location
United Kingdom
Salary
Salary:
Not provided
wiz.io Logo
Wiz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong technical background with a solid understanding of core IT, InfoSec, Cloud, and DevOps concepts
  • Proven skillset and experience with a career path focused on public cloud architecture (AWS, Azure, GCP)
  • Deep, practical knowledge of the AppSec landscape, including Application Security Posture Management (ASPM), SAST, DAST, SCA, and the operational use of SBOMs (SPDX/CycloneDX) and their practical use cases for vulnerability and license management
  • Demonstrable proficiency in one or more high-level languages (e.g., Python, Go, Rust) and/or advanced shell scripting
  • Experience and ability to code and understand developer workflows. Git, CI/CD, helm, terraform etc
  • SME level knowledge of Kubernetes and containers with the ability to architect and troubleshoot complex environments
  • Exceptional ability to present complex technical concepts to a wide range of audiences—from deeply technical developer teams to executive-level (CISO, CTO) stakeholders
  • Be passionate in regard to continuous self-improvement and learning to maintain technical leadership
  • Fluency in an additional European language is a plus
  • Applicants must have the legal right to work in the country where the position is based, without the need for visa sponsorship
Job Responsibility
Job Responsibility
  • Serve as the company's top field expert in application and cloud-native security and provide technical and business-relevant feedback into Product Management based on field engagements to improve Wiz’s position and value messaging to prospects and clients
  • Collaborate with Wiz sales teams on strategic opportunities in demonstrating the business and technical value of the Wiz platform
  • Assist SEs and prospects during the POC process with advanced use cases, installation/deployment, and troubleshooting
  • Lead regular thought leadership sessions with the field teams sharing insights and approaches derived through customer engagement to improve our effectiveness in messaging and delivering value to prospective clients and existing customers
  • Assist in messaging and selling Wiz platform capabilities to prospects and customers
  • Fulltime
Read More
Arrow Right

Application Security Engineer – AI & Cloud

This role is the first dedicated Application Security hire on a growing security...
Location
Location
United States , Minneapolis
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Application Security, Security Engineering, DevSecOps, or secure software development
  • Hands-on experience with SAST, DAST, secrets scanning, and dependency review in enterprise environments
  • Strong knowledge of API security — authentication, authorization, transport security, and data handling risks
  • Working knowledge of AWS security fundamentals — IAM, logging, encryption, networking, and secrets management
  • Experience securing or governing AI-assisted development tools such as Cursor, GitHub Copilot, or similar
  • AWS fundamentals including IAM, secrets management, logging, and networking
  • Experience embedding security controls into SDLC and CI/CD pipelines
  • Strong documentation skills — ability to produce defensible standards and audit-ready evidence for NIST and SOC 2
  • Excellent verbal and written communication skills
  • ability to work effectively with developers, architects, and business stakeholders
Job Responsibility
Job Responsibility
  • Own and operate the organization’s SAST and DAST programs end-to-end
  • Design, deploy, tune, and mature SAST and DAST tooling across development and release pipelines
  • Review application code, including AI-generated code, to identify vulnerabilities, insecure patterns, secrets exposure, and data handling risks
  • Partner directly with software developers to triage findings, prioritize remediation, and validate fixes
  • Act as a trusted AppSec partner to engineering, not a gatekeeper
  • Perform application and API security reviews across internally developed and SaaS-integrated systems
  • Evaluate authentication, authorization, transport security, rate limiting, session handling, logging, and data exposure risks
  • Assess externally exposed applications and APIs for secure design and release readiness
  • Support secure AWS application patterns including IAM, secrets management, logging, networking, and containerized workloads
  • Help centralize and improve secrets management using AWS Secrets Manager and enterprise tooling
What we offer
What we offer
  • medical, vision, dental, and life and disability insurance
  • eligibility to enroll in our company 401(k) plan
Read More
Arrow Right

Application Security Architect

We are seeking an experienced Application Security Architect to lead and enhance...
Location
Location
United States , Boston
Salary
Salary:
70.00 - 80.00 USD / Hour
daleyaa.com Logo
Daley and Associates
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field
  • 7+ years of experience in application security, including security architecture reviews, threat modeling, and risk assessments
  • Strong knowledge of secure software development practices and modern application security principles
  • Experience securing containerized and Kubernetes-based environments, including OpenShift and/or AKS
  • Experience integrating security into CI/CD pipelines and DevSecOps workflows using platforms such as Jenkins and Azure DevOps
  • Hands-on experience with application security testing methodologies and tools, including: Static Application Security Testing (SAST)
  • Dynamic Application Security Testing (DAST)
  • Software Composition Analysis (SCA)
  • Penetration testing and vulnerability assessment
  • Experience implementing and managing API security controls and API management platforms
Job Responsibility
Job Responsibility
  • Conduct security architecture reviews for new and existing applications, APIs, and cloud-native services to identify risks and recommend mitigation strategies
  • Lead application security risk assessments and threat modeling exercises for critical business applications and platforms
  • Define and maintain secure application architecture standards, reference patterns, and security best practices
  • Guide secure design principles, authentication and authorization models, encryption, secrets management, and secure API development
  • Design and implement security controls for containerized and Kubernetes-based environments, including OpenShift and Azure Kubernetes Service (AKS)
  • Support secure container runtime practices using technologies such as Docker and Podman
  • Collaborate with infrastructure and platform engineering teams to strengthen cloud-native security posture across Azure environments
  • Evaluate and recommend security tooling and controls for Kubernetes, container security, workload protection, and runtime monitoring
  • Partner with development and DevOps teams to integrate automated security controls into CI/CD pipelines and software delivery processes
  • Support secure development lifecycle (SDLC) initiatives, including security testing, code review processes, and vulnerability remediation workflows
Read More
Arrow Right

Principal Software Engineer - Security Architect

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
United States , Redmond
Salary
Salary:
163000.00 - 296400.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science or related technical field AND 8+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check
Job Responsibility
Job Responsibility
  • Partner with engineering teams to understand and improve the security posture of many systems related to Identity
  • Collaborate with teams to bring to fruition cross-company security initiatives
  • Assist engineering teams in resolving difficult technical problems
  • Provide vision and thought leadership for state-of-the-art security of the Microsoft estate
  • When needed, engage hands-on with the building, operations and security of services, systems and applications
  • Embody our culture and values
  • Fulltime
Read More
Arrow Right