CrawlJobs Logo
NTT DATA Logo NTT DATA · IT - Administration

Cloud / Application Security Architect

United Kingdom, London · Job Posted June 16, 2026
Apply Position
Job Link Share

Job Description

The Application Security Assurance Specialist - Principal (P3) is responsible for overseeing the security assurance processes within software development and deployment pipelines across diverse methodologies. This role champions proactive integration, governance, and enhancement of security controls, ensuring the maturity and effectiveness of application security frameworks to safeguard critical business systems.

Job Responsibility

  • Define and enforce embedded security practices across SDLC and CI/CD pipelines, ensuring compliance with organisational security policies and standards
  • Oversee the integration of advanced security tools (e.g., SAST, DAST, SCA, automated secret scanning) with development environments
  • Provide technical guidance on security configuration management, deployment hardening, and secure integration of tooling across all phases of software delivery
  • Conduct in-depth security risk assessments for high- and low-level technical designs, evaluating compliance against OWASP, CIS Benchmarks, and secure coding standards
  • Perform comprehensive security testing across application environments, including API security, container scanning, and dynamic runtime assessments, while evaluating residual risk post-assessment
  • Collaborate with stakeholders to assess the security maturity of existing practices and recommend improvements aligned with compliance requirements and delivery velocity
  • Provide expert-level recommendations on the refinement of automation processes, risk mitigation strategies, and the deployment of compensating controls where necessary
  • Evaluate emerging technologies and leverage AI-driven application security tools to optimise assurance activities
  • Partner with development and DevSecOps teams to embed robust security measures within workflows, ensuring alignment with secure coding standards and organisational priorities
  • Actively engage in the training of development teams, fostering a culture of security awareness and empowering stakeholders to implement best practices
  • Lead cross-functional teams to complete security assurance initiatives effectively
  • Generate actionable reports and presentations tailored to technical and non-technical audiences, highlighting findings, severity assessments, and remediation tracking
  • Maintain clear, auditable documentation for compliance purposes and contribute strategic insights into executive-level reviews

Requirements

  • 5+ Years experience in providing technical expertise in managing security frameworks and tools (SAST, DAST, SCA, container security, etc.)
  • Advanced knowledge of application lifecycle management methodologies (Waterfall, Agile, DevSecOps, CI/CD)
  • Strong understanding of compliance with standards such as OWASP Top 10, NIST CSF, and CIS Controls
  • Demonstrated ability to lead security assurance initiatives across complex development environments
  • Proficiency in designing and executing technical assessments and risk evaluations

Nice to have

  • Familiarity with AI-driven application and security testing tools and their integration within pipelines
  • Professional certifications such as CISSP, CSSLP, or similar
  • Experience in development enablement through the creation of secure coding frameworks and tools for automated quality assurance
NTT DATA - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cloud / Application Security Architect

8 matching positions

Cloud / Application Security Architect

The Application Security Assurance Specialist - Principal is a pivotal role focu...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ Years experience in providing technical expertise in managing security frameworks and tools (SAST, DAST, SCA, container security, etc.)
  • Advanced knowledge of application lifecycle management methodologies (Waterfall, Agile, DevSecOps, CI/CD)
  • Strong understanding of compliance with standards such as OWASP Top 10, NIST CSF, and CIS Controls
  • Demonstrated ability to lead security assurance initiatives across complex development environments
  • Proficiency in designing and executing technical assessments and risk evaluations
Job Responsibility
Job Responsibility
  • Define and enforce embedded security practices across SDLC and CI/CD pipelines, ensuring compliance with organisational security policies and standards
  • Oversee the integration of advanced security tools (e.g., SAST, DAST, SCA, automated secret scanning) with development environments
  • Provide technical guidance on security configuration management, deployment hardening, and secure integration of tooling across all phases of software delivery
  • Conduct in-depth security risk assessments for high- and low-level technical designs, evaluating compliance against OWASP, CIS Benchmarks, and secure coding standards
  • Perform comprehensive security testing across application environments, including API security, container scanning, and dynamic runtime assessments, while evaluating residual risk post-assessment
  • Collaborate with stakeholders to assess the security maturity of existing practices and recommend improvements
  • Provide expert-level recommendations on the refinement of automation processes, risk mitigation strategies, and the deployment of compensating controls
  • Evaluate emerging technologies and leverage AI-driven application security tools to optimise assurance activities
  • Partner with development and DevSecOps teams to embed robust security measures within workflows
  • Actively engage in the training of development teams, fostering a culture of security awareness
What we offer
What we offer
  • Tailored benefits that support your physical, emotional, and financial wellbeing
  • Continuous growth and development opportunities
  • Flexible work options
Read More
Arrow Right

Google Cloud Platform Cloud Security Architect

Location
Location
United States , Roswell
Salary
Salary:
Not provided
synkriom.com Logo
Synkriom
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of prior experience in IT in network security, information security and infrastructure in a high-tech environment
  • 5+ years architecting and implementing security and DevSecOps on public cloud solutions (AWS or Google Cloud Platform)
  • Work experience as a Cloud Security Architect or similar role in a cloud native environment
  • Deep hands-on experience leading the design and deployment of technology infrastructure and associated security controls
  • Experience in solutions for data security, data masking, data classification, data anonymization
Job Responsibility
Job Responsibility
  • Provide domain expertise around public cloud and enterprise technology
  • Configure, implement, monitor, and support network security software/systems that will help ensure compliance with CSA Cloud Controls Matrix in cloud environments (AWS/AzureP)
  • Update security tools for logging/monitoring and growing coverage of existing tools
  • Make recommendations to management on enhancements to existing and new security software or related tools
  • Assist in evaluating, planning and implementation of new/existing security applications/tools that integrate with current tool sets
  • Help implement and maintain next-generation enterprise protection tools and malware detection technologies
  • Ensure security standard methodologies are identified and integrated into all facets of projects including network, system designs/configuration and implementations
  • Make recommendation on secure integration strategies, global enterprise architectures and application infrastructure based on best practices
  • Develop security architecture strategies that align to enterprise architecture strategy and that of the business strategy for cloud
  • Develop in depth security architecture standards, frameworks and design patters spanning all layers of security in the cloud from host, server and network to application and data security
Read More
Arrow Right

Lead Application Security Architect

The Application Security Architect is a senior, influential role responsible for...
Location
Location
United Kingdom; Sweden; Poland , London; Stockholm; Łódź
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in technology, with at least 7 years in a dedicated application security or product security role
  • Demonstrated experience designing and implementing a Secure SDLC in a cloud-native environment (GCP, AWS)
  • Hands-on experience with the architecture and strategy of AppSec tools (e.g., Snyk, Checkmarx, Veracode,)
  • Experience with securing microservices architectures, APIs, and modern web/mobile applications
  • Experience with securing AI/ML systems
  • A Bachelor’s degree in a relevant field or equivalent professional experience
Job Responsibility
Job Responsibility
  • Champion and orchestrate the definition of Arrive’s global Secure Software Development Lifecycle (SSDLC), from threat modeling to secure release, in close partnership with key stakeholders across Engineering and IT
  • Develop and maintain a comprehensive set of global security standards, baselines, and guidelines for secure coding, vulnerability management, and secure architecture
  • Create and champion the strategy for our application security tooling, including SAST, DAST, IAST, and Software Composition Analysis (SCA)
  • Define and manage the application security standards for Mergers & Acquisitions, establishing clear requirements and guiding the architectural integration of acquired technologies
  • Act as a lead security consultant and strategic partner for product and engineering teams, providing expert guidance on secure design patterns and vulnerability remediation
  • Forge a dynamic partnership with the Platform Security team: co-design the security tooling roadmap, consume their platforms where they meet global standards, and introduce new architectural patterns where needed
  • Lead security architecture reviews and threat modeling sessions for new applications and high-risk features
  • Act as a senior mentor and advocate for security engineers and champions across the organization, helping to grow our security talent
  • Stay at the forefront of emerging application security threats, with a particular focus on the risks associated with AI/ML systems
  • Collaborate with Data & AI teams to develop security principles and architectural patterns for securely integrating AI into our products
  • Fulltime
Read More
Arrow Right

Application Security Architect

The NTT DATA Services Security Analysis Strategic Advisor Security Architect ser...
Location
Location
United States , Boston
Salary
Salary:
116000.00 - 190000.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10 years of comprehensive full stack development experience, with proficiency in technologies such as J2EE, C# .NET, JavaScript, and Python.
  • 5 years serving as a senior application security architect, with a strong emphasis on promoting application security standards and practices.
  • Demonstrated expertise in designing, architecting, and building secure enterprise web applications.
  • Skilled in developing scalable applications on cloud platforms, including AWS and/or Azure, with a focus on security principles and deployment best practices.
  • Highly experienced in conducting security peer reviews across application design, testing, and code.
  • Working experience with integrating applications into security technologies such as WAF, API gateways, Privileged access management platforms , identity access management platforms , LDAP and identity access governance systems
Job Responsibility
Job Responsibility
  • Collaborate with the client in the definition and implementation of information security policies, strategies, procedures and settings to ensure confidentiality, integrity and availability of client’s environment and data
  • Participate with the customer in the strategic design process to translate security and business requirements into processes and systems
  • Evaluate new / emerging security products and technologies and making recommendations to customer leadership in regards to the security posture impact on the organization
  • Maintaining an information security strategy (forward looking roadmap), for your customer, aligning services / portfolio components to the strategy
  • Ensure the delivery of information security services to the customer is in compliance with the contract and any applicable standards and regulatory requirements (e.g., PCI, SOX)
  • Identify, review and recommend information security improvements as they relate to the achievement of the customer’s business goals and objectives
  • Participate in internal and external audits for the customer (e.g., PCI, SOX) and coordinate information security services activities
  • Manage and drive remediation efforts related to information security
  • remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and Critical Practice assessments
  • Identify information security weaknesses and/or gaps in the customer’s current operations and work with the customer to bring information security operations up to standards
What we offer
What we offer
  • medical, dental, and vision insurance with an employer contribution
  • flexible spending or health savings account
  • life and AD&D insurance
  • short and long term disability coverage
  • paid time off
  • employee assistance
  • participation in a 401k program with company match
  • additional voluntary or legally-required benefits
Read More
Arrow Right

Cloud Application Architect

Location
Location
United States , Greensboro
Salary
Salary:
150000.00 USD / Year
pipercompanies.com Logo
Piper Companies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience within Application Architecture
  • Prefer to have hands on AWS Application Architecture
  • Hands on development experience with Python and JavaScript
Job Responsibility
Job Responsibility
  • Developing, designing, implementing, and managing the applications in AWS
  • Manage canary releases and blue-green deployments
  • Collaborate with product owners to define service level objectives and manage the health and performance of cloud systems by implementing observability and responsive
  • Ensure all data and infrastructure deployments comply with enterprise security and access controls, best practices, and standards
  • Collaborate with partners and internal teams to design scalable and secure cloud architectures based on best practices and business requirements
  • Implement security measures and compliance
What we offer
What we offer
  • Medical
  • Dental
  • Vision
  • Fulltime
Read More
Arrow Right

Senior Information Security Architect - Cloud IAM

We are seeking a highly skilled Senior IAM Security Architect to join our inform...
Location
Location
United States
Salary
Salary:
148600.00 - 198200.00 USD / Year
firstam.com Logo
First American Financial
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in IAM security, including at least 5 years of experience in IAM risk assessment, threat modeling, and security control design
  • Preferred Certified Information Systems Security Professional (CISSP) or Certified Identity and Access Manager (CIAM) or other relevant IAM/security certification
  • Proven expertise in implementing and securing IAM solutions in cloud environments such as AWS, Azure, and Entra ID
  • In-depth knowledge of IAM security best practices, identity governance, and access management policies
  • Hands-on experience in conducting security risk assessments and threat modeling for IAM systems
  • Demonstrated experience in establishing least privilege access and implementing Just-in-Time (JIT) access controls across cloud and on-premises environments
  • Expertise in implementing and managing a Zero Trust security posture for IAM, with hands-on experience in identity validation, continuous authentication, and risk-based access controls
  • Strong expertise with IAM platforms such as Microsoft Entra ID (Azure AD), AWS IAM, Azure Active Directory
  • Experience with cloud security, integrating IAM systems with AWS, Azure, and hybrid environments
  • Strong understanding of IAM security controls, including role-based access control (RBAC), attribute-based access control (ABAC), policy enforcement, and Just-in-Time (JIT) provisioning
Job Responsibility
Job Responsibility
  • Participate in the design of secure IAM architectures across multiple platforms (AWS, Azure, Entra ID), ensuring all components align with best practices and organizational security requirements
  • Design security controls for IAM, including user authentication, authorization, role management, identity federation, and privilege management across cloud and hybrid environments
  • Lead the design and evolution of CIAM architecture that supports secure, scalable, and customer-centric identity services across web, mobile, and API-based platforms
  • Establish and maintain a Zero Trust security model for IAM, ensuring that all access requests are continuously verified, regardless of location or network
  • Integrate Zero Trust principles with cloud-native security tools and IAM platforms (e.g., AWS, Azure, Entra ID) to ensure seamless, secure, and dynamic access control
  • Automate risk-based access controls and adaptive authentication based on behavioral signals, ensuring a dynamic response to security events
  • Establish and enforce least privilege access principles for all roles across cloud and on-prem environments, ensuring users only have the minimal access necessary to perform their job functions
  • Design and implement Just-in-Time (JIT) access control mechanisms to dynamically grant access based on user needs, significantly reducing standing permission sets
  • Design SSO solutions that provide seamless and secure access to enterprise applications, ensuring a frictionless user experience while maintaining high security standards
  • Lead the adoption of modern authentication protocols (e.g., OAuth 2.0, OpenID Connect, SAML) for secure, scalable, and standardized access management across applications and systems
What we offer
What we offer
  • medical
  • dental
  • vision
  • 401k
  • PTO/paid sick leave
  • employee stock purchase plan
  • Fulltime
Read More
Arrow Right

Application Security Architect

We are seeking an experienced Application Security Architect to lead and enhance...
Location
Location
United States , Boston
Salary
Salary:
70.00 - 80.00 USD / Hour
daleyaa.com Logo
Daley and Associates
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field
  • 7+ years of experience in application security, including security architecture reviews, threat modeling, and risk assessments
  • Strong knowledge of secure software development practices and modern application security principles
  • Experience securing containerized and Kubernetes-based environments, including OpenShift and/or AKS
  • Experience integrating security into CI/CD pipelines and DevSecOps workflows using platforms such as Jenkins and Azure DevOps
  • Hands-on experience with application security testing methodologies and tools, including: Static Application Security Testing (SAST)
  • Dynamic Application Security Testing (DAST)
  • Software Composition Analysis (SCA)
  • Penetration testing and vulnerability assessment
  • Experience implementing and managing API security controls and API management platforms
Job Responsibility
Job Responsibility
  • Conduct security architecture reviews for new and existing applications, APIs, and cloud-native services to identify risks and recommend mitigation strategies
  • Lead application security risk assessments and threat modeling exercises for critical business applications and platforms
  • Define and maintain secure application architecture standards, reference patterns, and security best practices
  • Guide secure design principles, authentication and authorization models, encryption, secrets management, and secure API development
  • Design and implement security controls for containerized and Kubernetes-based environments, including OpenShift and Azure Kubernetes Service (AKS)
  • Support secure container runtime practices using technologies such as Docker and Podman
  • Collaborate with infrastructure and platform engineering teams to strengthen cloud-native security posture across Azure environments
  • Evaluate and recommend security tooling and controls for Kubernetes, container security, workload protection, and runtime monitoring
  • Partner with development and DevOps teams to integrate automated security controls into CI/CD pipelines and software delivery processes
  • Support secure development lifecycle (SDLC) initiatives, including security testing, code review processes, and vulnerability remediation workflows
Read More
Arrow Right

Cloud Application Architect

We are seeking an experienced Software Architect to lead the design and developm...
Location
Location
United States , King of Prussia
Salary
Salary:
63.00 - 73.00 USD / Hour
bhsg.com Logo
Beacon Hill
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science or related field
  • 8+ years of software development experience, with 3+ years in an architectural role
  • PHP (Laravel framework)
  • Node.js and modern JavaScript frameworks
  • Solid understanding of microservices architecture and RESTful APIs
  • Hands-on experience with AWS cloud services
  • EKS (Elastic Kubernetes Service)
  • Containerization (Docker, Kubernetes)
  • Strong experience in DevOps practices
  • Proven experience building and managing CI/CD pipelines
Job Responsibility
Job Responsibility
  • Design and architect scalable, secure, and high-availability applications using Laravel, Node.js, and modern frameworks
  • Define system architecture, microservices patterns, and API design standards
  • Lead technical decision-making and establish best practices for development and deployment
  • Collaborate with cross-functional teams including product, QA, and DevOps
  • Drive adoption of cloud-native architectures using AWS (EKS, EC2, S3, RDS, etc.)
  • Design and implement CI/CD pipelines to ensure efficient and reliable releases
  • Mentor and guide engineering teams on architecture, coding standards, and performance optimization
  • Ensure system scalability, performance, security, and maintainability
  • Conduct code reviews and architecture reviews
  • Troubleshoot complex production issues and provide long-term solutions
Read More
Arrow Right