CrawlJobs Logo
NTT DATA Logo NTT DATA · IT - Administration

Application Security Architect

United States, Boston 116000.00 - 190000.00 USD / Year · Job Posted May 30, 2026
Apply Position
Job Link Share

Job Description

The NTT DATA Services Security Analysis Strategic Advisor Security Architect serves as a security lead/visionary and is an expert in many areas of security. The Security Analysis Strategic Advisor works collaboratively with the customer to align information security with the customer’s business strategy, security policies and regulatory and compliance landscape resulting in increased protection and reduced risk. In this role, the Security Analysis Strategic Advisor works with stakeholders and teams across the organization to help deliver information security services.

Job Responsibility

  • Collaborate with the client in the definition and implementation of information security policies, strategies, procedures and settings to ensure confidentiality, integrity and availability of client’s environment and data
  • Participate with the customer in the strategic design process to translate security and business requirements into processes and systems
  • Evaluate new / emerging security products and technologies and making recommendations to customer leadership in regards to the security posture impact on the organization
  • Maintaining an information security strategy (forward looking roadmap), for your customer, aligning services / portfolio components to the strategy
  • Ensure the delivery of information security services to the customer is in compliance with the contract and any applicable standards and regulatory requirements (e.g., PCI, SOX)
  • Identify, review and recommend information security improvements as they relate to the achievement of the customer’s business goals and objectives
  • Participate in internal and external audits for the customer (e.g., PCI, SOX) and coordinate information security services activities
  • Manage and drive remediation efforts related to information security
  • remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and Critical Practice assessments
  • Identify information security weaknesses and/or gaps in the customer’s current operations and work with the customer to bring information security operations up to standards
  • Cultivate trusted partner relationships with account and customer
  • keep consistent and open dialogue to uncover issues, challenges, risks

Requirements

  • 10 years of comprehensive full stack development experience, with proficiency in technologies such as J2EE, C# .NET, JavaScript, and Python.
  • 5 years serving as a senior application security architect, with a strong emphasis on promoting application security standards and practices.
  • Demonstrated expertise in designing, architecting, and building secure enterprise web applications.
  • Skilled in developing scalable applications on cloud platforms, including AWS and/or Azure, with a focus on security principles and deployment best practices.
  • Highly experienced in conducting security peer reviews across application design, testing, and code.
  • Working experience with integrating applications into security technologies such as WAF, API gateways, Privileged access management platforms , identity access management platforms , LDAP and identity access governance systems

What we offer

  • medical, dental, and vision insurance with an employer contribution
  • flexible spending or health savings account
  • life and AD&D insurance
  • short and long term disability coverage
  • paid time off
  • employee assistance
  • participation in a 401k program with company match
  • additional voluntary or legally-required benefits
NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Application Security Architect

8 matching positions

Application Security Architect

We are seeking an experienced Application Security Architect to lead and enhance...
Location
Location
United States , Boston
Salary
Salary:
70.00 - 80.00 USD / Hour
daleyaa.com Logo
Daley and Associates
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field
  • 7+ years of experience in application security, including security architecture reviews, threat modeling, and risk assessments
  • Strong knowledge of secure software development practices and modern application security principles
  • Experience securing containerized and Kubernetes-based environments, including OpenShift and/or AKS
  • Experience integrating security into CI/CD pipelines and DevSecOps workflows using platforms such as Jenkins and Azure DevOps
  • Hands-on experience with application security testing methodologies and tools, including: Static Application Security Testing (SAST)
  • Dynamic Application Security Testing (DAST)
  • Software Composition Analysis (SCA)
  • Penetration testing and vulnerability assessment
  • Experience implementing and managing API security controls and API management platforms
Job Responsibility
Job Responsibility
  • Conduct security architecture reviews for new and existing applications, APIs, and cloud-native services to identify risks and recommend mitigation strategies
  • Lead application security risk assessments and threat modeling exercises for critical business applications and platforms
  • Define and maintain secure application architecture standards, reference patterns, and security best practices
  • Guide secure design principles, authentication and authorization models, encryption, secrets management, and secure API development
  • Design and implement security controls for containerized and Kubernetes-based environments, including OpenShift and Azure Kubernetes Service (AKS)
  • Support secure container runtime practices using technologies such as Docker and Podman
  • Collaborate with infrastructure and platform engineering teams to strengthen cloud-native security posture across Azure environments
  • Evaluate and recommend security tooling and controls for Kubernetes, container security, workload protection, and runtime monitoring
  • Partner with development and DevOps teams to integrate automated security controls into CI/CD pipelines and software delivery processes
  • Support secure development lifecycle (SDLC) initiatives, including security testing, code review processes, and vulnerability remediation workflows
Read More
Arrow Right

Cloud / Application Security Architect

The Application Security Assurance Specialist - Principal is a pivotal role focu...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ Years experience in providing technical expertise in managing security frameworks and tools (SAST, DAST, SCA, container security, etc.)
  • Advanced knowledge of application lifecycle management methodologies (Waterfall, Agile, DevSecOps, CI/CD)
  • Strong understanding of compliance with standards such as OWASP Top 10, NIST CSF, and CIS Controls
  • Demonstrated ability to lead security assurance initiatives across complex development environments
  • Proficiency in designing and executing technical assessments and risk evaluations
Job Responsibility
Job Responsibility
  • Define and enforce embedded security practices across SDLC and CI/CD pipelines, ensuring compliance with organisational security policies and standards
  • Oversee the integration of advanced security tools (e.g., SAST, DAST, SCA, automated secret scanning) with development environments
  • Provide technical guidance on security configuration management, deployment hardening, and secure integration of tooling across all phases of software delivery
  • Conduct in-depth security risk assessments for high- and low-level technical designs, evaluating compliance against OWASP, CIS Benchmarks, and secure coding standards
  • Perform comprehensive security testing across application environments, including API security, container scanning, and dynamic runtime assessments, while evaluating residual risk post-assessment
  • Collaborate with stakeholders to assess the security maturity of existing practices and recommend improvements
  • Provide expert-level recommendations on the refinement of automation processes, risk mitigation strategies, and the deployment of compensating controls
  • Evaluate emerging technologies and leverage AI-driven application security tools to optimise assurance activities
  • Partner with development and DevSecOps teams to embed robust security measures within workflows
  • Actively engage in the training of development teams, fostering a culture of security awareness
What we offer
What we offer
  • Tailored benefits that support your physical, emotional, and financial wellbeing
  • Continuous growth and development opportunities
  • Flexible work options
Read More
Arrow Right

Application Security Architect & Engineer

We are looking for an experienced Application Security Architect & Engineer to j...
Location
Location
United States , Richmond
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5 years of experience in application security or a related field
  • Strong understanding of secure coding practices and vulnerability management
  • Proficiency in programming languages such as JavaScript, Java, C#, and SQL
  • Familiarity with Agile and Scrum methodologies to support secure software development
  • Experience with modern web application architectures, including cloud technologies and APIs
  • Expertise in using application security tools like Accunetix, Veracode, and Splunk
  • Knowledge of compliance standards such as NIST 800-53 and IRS Pub 1075
  • Excellent communication skills to convey technical concepts to both technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Provide comprehensive security guidance and training to development and operations teams to enhance secure software practices
  • Evaluate application architecture and design to identify security risks and align them with DevSecOps principles
  • Promote and enforce secure coding standards across diverse programming languages such as JavaScript, Java, and C#
  • Conduct detailed reviews of source code to identify vulnerabilities and recommend effective remediation strategies
  • Assess and secure modern web application frameworks, including cloud technologies, APIs, microservices, and client-server models
  • Utilize application security testing tools and platforms, such as Accunetix, Veracode, Jenkins, Splunk, Rapid7, and Tenable, to identify and address security weaknesses
  • Ensure compliance with relevant security regulations and standards, including NIST 800-53 and IRS Pub 1075
  • Develop and maintain System Security Plans (SSPs) to document security policies and procedures effectively
  • Collaborate with cross-functional teams, including QA engineers and operations staff, to integrate security measures into workflows
  • Stay updated on emerging threats, technologies, and industry trends to continuously improve security practices
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • eligibility to enroll in company 401(k) plan
Read More
Arrow Right

Principal Solutions Engineer - Application Security

As a Principal Solutions Engineer you will work closely with Wiz’s CTO, Field CT...
Location
Location
Germany
Salary
Salary:
Not provided
wiz.io Logo
Wiz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong technical background with a solid understanding of core IT, InfoSec, Cloud, and DevOps concepts
  • Proven skillset and experience with a career path focused on public cloud architecture (AWS, Azure, GCP)
  • Deep, practical knowledge of the AppSec landscape, including Application Security Posture Management (ASPM), SAST, DAST, SCA, and the operational use of SBOMs (SPDX/CycloneDX) and their practical use cases for vulnerability and license management
  • Demonstrable proficiency in one or more high-level languages (e.g., Python, Go, Rust) and/or advanced shell scripting
  • Experience and ability to code and understand developer workflows. Git, CI/CD, helm, terraform etc
  • SME level knowledge of Kubernetes and containers with the ability to architect and troubleshoot complex environments
  • Exceptional ability to present complex technical concepts to a wide range of audiences—from deeply technical developer teams to executive-level (CISO, CTO) stakeholders
  • Be passionate in regard to continuous self-improvement and learning to maintain technical leadership
  • Full professional fluency in German (written and verbal)
Job Responsibility
Job Responsibility
  • Serve as the company's top field expert in application and cloud-native security and provide technical and business-relevant feedback into Product Management based on field engagements to improve Wiz’s position and value messaging to prospects and clients
  • Collaborate with Wiz sales teams on strategic opportunities in demonstrating the business and technical value of the Wiz platform
  • Assist SEs and prospects during the POC process with advanced use cases, installation/deployment, and troubleshooting
  • Lead regular thought leadership sessions with the field teams sharing insights and approaches derived through customer engagement to improve our effectiveness in messaging and delivering value to prospective clients and existing customers
  • Assist in messaging and selling Wiz platform capabilities to prospects and customers
  • Fulltime
Read More
Arrow Right

Principal Solutions Engineer - Application Security

As a Principal Solutions Engineer you will work closely with Wiz’s CTO, Field CT...
Location
Location
United Kingdom
Salary
Salary:
Not provided
wiz.io Logo
Wiz
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong technical background with a solid understanding of core IT, InfoSec, Cloud, and DevOps concepts
  • Proven skillset and experience with a career path focused on public cloud architecture (AWS, Azure, GCP)
  • Deep, practical knowledge of the AppSec landscape, including Application Security Posture Management (ASPM), SAST, DAST, SCA, and the operational use of SBOMs (SPDX/CycloneDX) and their practical use cases for vulnerability and license management
  • Demonstrable proficiency in one or more high-level languages (e.g., Python, Go, Rust) and/or advanced shell scripting
  • Experience and ability to code and understand developer workflows. Git, CI/CD, helm, terraform etc
  • SME level knowledge of Kubernetes and containers with the ability to architect and troubleshoot complex environments
  • Exceptional ability to present complex technical concepts to a wide range of audiences—from deeply technical developer teams to executive-level (CISO, CTO) stakeholders
  • Be passionate in regard to continuous self-improvement and learning to maintain technical leadership
  • Fluency in an additional European language is a plus
  • Applicants must have the legal right to work in the country where the position is based, without the need for visa sponsorship
Job Responsibility
Job Responsibility
  • Serve as the company's top field expert in application and cloud-native security and provide technical and business-relevant feedback into Product Management based on field engagements to improve Wiz’s position and value messaging to prospects and clients
  • Collaborate with Wiz sales teams on strategic opportunities in demonstrating the business and technical value of the Wiz platform
  • Assist SEs and prospects during the POC process with advanced use cases, installation/deployment, and troubleshooting
  • Lead regular thought leadership sessions with the field teams sharing insights and approaches derived through customer engagement to improve our effectiveness in messaging and delivering value to prospective clients and existing customers
  • Assist in messaging and selling Wiz platform capabilities to prospects and customers
  • Fulltime
Read More
Arrow Right
New

Information Security Architect - Telephony / IoT / Cloud / Apps / AI

We have a 6-month contract to hire position open for a Security Architect role. ...
Location
Location
United States , Roseville
Salary
Salary:
Not provided
zeektek.com Logo
Zeektek
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Cybersecurity, or related field
  • Master's preferred
  • 7+ years of progressive experience in Information Security Architecture & Operations roles
  • Certifications: CISSP, CCSP, SABSA, CISM, TOGAF, AI Security Specialist
  • Deep understanding of network, cloud, and application security across telecom, IT, and IoT ecosystems
  • Experience designing and securing AI/ML platforms including governance of LLMs and agentic AI tools
  • Proven experience with regulatory frameworks (FCC, HIPAA, NIST, ISO 27001)
  • Hands-on experience with cloud-native security (AWS, Azure, GCP) and Dev Sec Ops tooling
  • Experience with endpoint detection and response (EDR) platforms, ideally Crowdstrike
  • Hands-on expertise with vulnerability management and SIEM platforms, including Rapid7
Job Responsibility
Job Responsibility
  • Develop and maintain the enterprise security architecture framework covering IT, telecom, mobile, and IoT platforms
  • Lead & partake in enterprise-wide cybersecurity initiatives, aligning with industry frameworks (NIST, ISO, CIS)
  • Define zero-trust architecture patterns for multi-cloud (AWS, MS Azure) and hybrid environments
  • Evaluate and recommend new security technologies and processes to address evolving threats
  • Define and ensure clear direction for configuration, monitoring, and hardening of Cisco security infrastructure including firewalls, VPNs, and intrusion prevention systems
  • Define and oversee policies & guidelines for vulnerability management programs, and leveraging tools such as Rapid7
  • Ensure security-by-design principles are embedded in all technology initiatives, including product development and infrastructure modernization
  • Partner with Enterprise Architecture and Tech Ops teams to align security blueprints with overall technical standards and business capabilities
  • Define AI/ML and Agentic AI security guardrails, including model access, prompt sanitization, model drift monitoring, and data provenance controls
  • Develop governance policies for secure use of AI APIs, LLMs, and autonomous agent frameworks
What we offer
What we offer
  • Weekly Direct Deposit
  • 401K Matching
  • Competitive medical, dental and vision insurance
  • Consistent communication throughout your project
  • ZeekTek Referral Program
Read More
Arrow Right
New

Security Architect

Location
Location
Portugal , Matosinhos Municipality; Lisbon
Salary
Salary:
Not provided
https://www.tui.com Logo
TUI
Expiration Date
June 17, 2026
Flip Icon
Requirements
Requirements
  • You have a demonstrable track record of delivering Zero Trust control implementation - not just designing it - across enterprise environments, with practical understanding of the CISA Zero Trust Maturity Model across all five pillars and the ability to assess current state against Traditional, Initial, Advanced, and Optimal maturity stages
  • Evidence of driving security control implementation through delivery teams in large, complex organisations is essential, as you distinguish between controls that have been deployed and verified versus those that have only been documented or recommended, actively rejecting activity-based metrics in favour of outcome-based measurement
  • Hands-on experience with Microsoft Security Exposure Management, Microsoft Secure Score, Maester, and the Microsoft Defender suite enables you to extract control status data, interpret attack path exposure metrics, and use tooling output to drive delivery prioritisation and evidence compilation
  • Your proficiency with Entra ID, Intune, Defender for Endpoint, and Defender for Office 365 as control implementation platforms means you can provide technical depth across Identity, Devices, Networks, Applications, and Data pillar-specific control areas
  • You're able to identify and challenge shared ownership arrangements that prevent control implementation, assigning single accountable owners to controls and holding them to delivery commitments, understanding that a control without a named, funded owner is an unmanaged risk
  • Experience working within an OKR framework where key results are tied to measurable security outcomes is important, as you understand that programme maturity is measured by controls implemented and attack surface reduced - not by documents produced or workshops delivered
  • Operating within or alongside a formal security architecture governance function comes naturally to you, as you contribute to quarterly reporting cadences and multi-team delivery coordination across complex enterprise environments
  • You're highly autonomous and able to identify what needs to happen next without being directed, taking ownership of blockers and working comfortably across organisational boundaries to challenge delivery teams when progress is below expectation
  • Being comfortable with ambiguity in an actively evolving programme is essential, as you adjust your approach based on what measurement data shows and stay motivated by reducing actual risk rather than achieving compliance posture
Job Responsibility
Job Responsibility
  • Drive control implementation across all five CISA Zero Trust pillars - dentity, Devices, Networks, Applications and Workloads, and Data - translating pillar OKR commitments into specific, sequenced control deployments with defined owners, timelines, and measurable success criteria
  • Own the measurement framework for Zero Trust maturity progression, using Microsoft Security Exposure Management, Maester security assessments, and Microsoft Secure Score to track control status changes, maintain time-series data, and escalate stalled controls before they impact quarterly OKR targets
  • Work directly with pillar owners - Identity, Devices, Network, Applications, and Data leads - to convert high-priority workshop outputs into active delivery backlogs, challenging shared ownership arrangements and ensuring each control has a single named owner with budget authority
  • Provide technical depth across pillar-specific control areas including Conditional Access policy design, Entra ID Governance, PIM, phishing-resistant MFA deployment, trusted device strategy, Intune policy enforcement, network segmentation, secure remote access patterns, application ownership models, Entra SSO integration, API security governance, and data loss prevention aligned to the Secure Future Initiative
  • Triage Microsoft Secure Score recommendations against pillar OKR priorities, assign each recommendation to the correct pillar owner with delivery timelines, track closure rates, and separate high-impact risk-reducing controls from low-value compliance activities
  • Generate evidence of risk reduction for board reporting and cyber insurance renewal, presenting Zero Trust progress in terms of attack surface change and business impact rather than framework terminology
What we offer
What we offer
  • Attractive remuneration
  • Exclusive travel perks & discounts
  • Extensive health & wellbeing support
  • Flexible working
  • Access the TUI Tech Learning Hub
  • Opportunities to upskill, reskill and grow your career
  • Participate in our tech communities and collaborate on global projects and teams
  • Get involved with incredible local charity and sustainability initiatives like the TUI Care Foundation and the Sustainable Tech Community
  • Fulltime
Read More
Arrow Right

Cloud Application Architect

Location
Location
United States , Greensboro
Salary
Salary:
150000.00 USD / Year
pipercompanies.com Logo
Piper Companies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience within Application Architecture
  • Prefer to have hands on AWS Application Architecture
  • Hands on development experience with Python and JavaScript
Job Responsibility
Job Responsibility
  • Developing, designing, implementing, and managing the applications in AWS
  • Manage canary releases and blue-green deployments
  • Collaborate with product owners to define service level objectives and manage the health and performance of cloud systems by implementing observability and responsive
  • Ensure all data and infrastructure deployments comply with enterprise security and access controls, best practices, and standards
  • Collaborate with partners and internal teams to design scalable and secure cloud architectures based on best practices and business requirements
  • Implement security measures and compliance
What we offer
What we offer
  • Medical
  • Dental
  • Vision
  • Fulltime
Read More
Arrow Right