CrawlJobs Logo
Whoop Logo Whoop · IT - Administration

Security Architecture Lead

United States, Boston 185000.00 - 200000.00 USD / Year · Job Posted December 13, 2025
Apply Position
Job Link Share

Job Description

WHOOP is seeking a Security Architecture Lead to help shape secure, scalable design across our product, platform, AI, and internal systems. This strategic role partners closely with Product Security, Engineering, IT, and InfoSec to influence technical decisions, review designs, validate threat models, integrate security into the SDLC, and guide secure adoption of new technologies and vendors.

Job Responsibility

  • Provide architectural oversight across product, platform, and internal systems, ensuring scalable, secure patterns that support WHOOP’s long-term growth
  • Advise InfoSec and IT on secure, scalable approaches for SIEM/logging pipelines, identity integrations, privileged access, SaaS integrations, and foundational security tooling
  • Define the target-state architecture for vulnerability management across product, cloud, and internal systems, transitioning from spreadsheets to integrated, automated workflows
  • Serve as the technical evaluator for high-risk vendors and integrations, validating architecture, controls, and data flows as part of the TPRA process
  • Map WHOOP’s architecture to frameworks required for future regulated or government-oriented verticals (i.e., NIST 800-53, AI governance standards, healthcare/biometric requirements) and help shape the roadmap toward readiness
  • Contribute to the design of scalable, secure patterns for AI usage across WHOOP, including MCP governance, LLM API integrations, and AI-enabled product features
  • Partner with Product Security and Engineering to provide secure design input for identity flows, API/WAF strategy, backend services, data paths, and new product features
  • Review threat models and design documents with Product Security and Engineering, identifying assumptions, systemic risks, and missing mitigations
  • Integrate security into engineering workflows through practical, reusable patterns and clear expectations
  • Produce clear, actionable architectural guidance and documentation used across engineering, product, and security
  • Act as a trusted advisor and mentor, raising the organization’s architectural maturity and security judgment

Requirements

  • 7–10+ years in security architecture, product security, or senior security engineering roles supporting modern distributed systems
  • Strong understanding of secure system design, identity and access patterns, API and application security, and cloud-native architecture (AWS preferred)
  • Experience reviewing and guiding threat models in real engineering environments
  • Interest or experience in securing AI/LLM integrations or developing standards for responsible AI usage
  • Ability to influence and collaborate effectively across engineering, product, IT, and security
  • Familiarity with SOC 2, ISO 27001, GDPR, PCI, HIPAA-aligned security requirements, and NIST 800-53 or similar high-assurance control frameworks
  • Ability to translate regulatory and high-assurance control expectations into practical engineering patterns
  • Exceptional written and verbal communication, including design feedback and technical documentation
  • High integrity, sound judgment, and a pragmatic, solution-oriented mindset

Nice to have

Interest or experience in securing AI/LLM integrations or developing standards for responsible AI usage

What we offer

  • competitive base salaries
  • meaningful equity
  • benefits
  • generous equity package
Whoop - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Security Architecture Lead

8 matching positions

Security Architecture Lead

We are looking for a Security Architecture Lead to serve as the primary technica...
Location
Location
United States , Foster City
Salary
Salary:
228000.00 - 363000.00 USD / Year
replit.com Logo
Replit
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in security engineering or security architecture
  • Proven experience as a Technical Lead, steering large-scale projects and guiding the work of other senior engineers
  • Experience writing and maintaining Architecture documents
  • Deep expertise in cloud-native security architecture (GCP experience is a significant plus) for multi-tenant SaaS products
  • Experience designing secure boot, hardware/Cloud-KMS-rooted trust, and multi-layered defense systems
  • Strong understanding of isolation technologies and DDoS mitigation
  • Exceptional ability to communicate technical risk to both engineering and executive audiences
  • Strong track record of contributing to Cybersecurity Risk Register
Job Responsibility
Job Responsibility
  • Act as the lead technical voice for security architecture, defining the long-term vision and ensuring consistency across complex infrastructure and product projects
  • Provide high-level guidance and mentorship to security engineers
  • Lead cross-functional squads through complex security implementations, from initial design to final production deployment
  • Define and maintain (document) the authoritative "Source of Truth" for Replit’s secure architecture
  • Drive the design for secure bootstrapping and multi-layered trust
  • Enforce isolation principles at every level
  • Actively identify, document, and quantify architectural security risks
  • Oversee and conduct deep-dive security reviews for core product features and infrastructure
  • Own the architectural strategy for Availability, specifically defending against DoS threats
  • Partner with GRC teams to translate complex architectural designs into clear, audit-ready documentation and control frameworks
What we offer
What we offer
  • Competitive Salary & Equity
  • 401(k) Program with a 4% match
  • Health, Dental, Vision and Life Insurance
  • Short Term and Long Term Disability
  • Paid Parental, Medical, Caregiver Leave
  • Commuter Benefits
  • Monthly Wellness Stipend
  • Autonomous Work Environment
  • In Office Set-Up Reimbursement
  • Flexible Time Off (FTO) + Holidays
  • Fulltime
Read More
Arrow Right

Architecture Lead (Security & AI Solutions)

We are looking for a Cloud Solution Architect (CSA) Manager, specializing in sec...
Location
Location
United Kingdom , Multiple Locations
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science, Information Technology, Engineering, Business, Liberal Arts, or related field AND extensive experience in cloud/infrastructure technologies, information technology (IT) consulting/support, systems administration, network operations, software development/support, technology solutions, practice development, architecture, and/or consulting
  • OR equivalent experience
  • Solid people management experience, including managing consultant practice managers, technical sales managers, and/or technical architect managers
  • OR equivalent experience
Job Responsibility
Job Responsibility
  • Lead your team to deliver customer objectives & Microsoft business targets
  • Lead them through change using the Demonstrated Capabilities framework and deliver positive Customer Satisfaction, and coach them to become trusted advisors to customers and partners, by leveraging Security expertise across M365 and Azure to enable defined Customer Success Plan outcomes
  • Coach the team to understand customer objectives and how Unified accelerates value realization and guide team to drive positive Customer Satisfaction & share feedback/insights from customers/partners
  • Coach the team to develop opportunities driving Customer Success business results by working with technical decision makers ensuring they understand Microsoft's security value proposition and get value from their investment in Microsoft technology through deep business understanding of security solution plays and customer scenarios
  • Coach the team to identify resolutions to issues blocking go-live of customer success projects by leveraging security technical subject matter expertise
  • Support them to lead technical conversations with customers to drive value from their MS investments, by delivering all work according to MS best practices and policies and using repeatable Intellectual Property (IP) and run your business and develop your team to meet customer needs and Microsoft business targets
  • Coach team to deliver according to MS best practices & using repeatable Intellectual Property (IP)
  • Foster a continuous self-learning culture and drive technical intensity, driving team to enable customers to realize desired business outcomes, including innovation
  • Model impactful community engagement and coach team to contribute to repeatable IP
  • Leverage your ability to apply principles, systems, tools, and strategic insights to sustainably improve key performance metrics (KPIs) and drive operational efficiencies and coach the team on situational fluency (Interpersonal Flexibility) by studying your customer, understanding the situation, "reading the room" and reacting accordingly as you coach the teams on how and when to pivot customer/ internal conversations based on what you observe in your environment
  • Fulltime
Read More
Arrow Right

Lead Security Engineer (DLP)

Lead the global data protection strategy and build an elite security team. Drive...
Location
Location
Malaysia , Kuala Lumpur
Salary
Salary:
15000.00 - 25000.00 MYR / Month
https://www.randstad.com Logo
Randstad
Expiration Date
August 06, 2026
Flip Icon
Requirements
Requirements
  • Deep, architectural-level understanding of Microsoft Purview and enterprise data protection ecosystems
  • Design and deploy scalable data classification, auto-labeling, and advanced DLP frameworks across diverse platforms
  • Drive high-level incident response strategies and oversee complex security investigations
  • Demonstrate strong leadership capabilities to guide technical teams and manage large-scale security projects
  • Communicate complex security concepts effectively to both technical teams and non-technical executive stakeholders
Job Responsibility
Job Responsibility
  • Architect and drive the global DLP roadmap, ensuring alignment with enterprise security and compliance goals
  • Oversee the end-to-end lifecycle of data protection policies across Microsoft Purview and other enterprise platforms
  • Partner with executive stakeholders and external vendors to ensure seamless, SLA-compliant service delivery
  • Direct the investigation of critical data leakage events and optimize incident response frameworks
  • Mentor, train, and lead a team of security engineers, fostering a culture of technical excellence and proactive defense
Read More
Arrow Right

Lead Security Architect

JET's Information Security organisation protects a technology-led, cloud-native ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
justeattakeaway.com Logo
Just Eat Takeaway.com
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strategic risk management expertise, with the ability to assess enterprise-wide threats and translate them into architectural roadmaps
  • Exceptional communication skills to engage C-Suite stakeholders, presenting complex security topics with clarity and business context
  • Deep technical knowledge across Cloud Security, Network Security, and Identity and Access Management (IAM) architectures
  • Proven ability to influence across organizational boundaries, building trusted partnerships with engineering, IT, product, and business leaders
  • Industry thought leadership mindset, staying ahead of emerging threats and contributing to the broader security community
  • Certified Information Systems Security Professional (CISSP) certification
  • Additional certifications such as Certified Information Security Manager (CISM) highly valued
  • Demonstrated experience designing and implementing enterprise-scale security frameworks that balance protection with business enablement
  • Strong ethical foundation and integrity, understanding the responsibility of handling sensitive information and setting team standards
  • Collaborative approach to security governance, with a track record of embedding security seamlessly into development and operations workflows
Job Responsibility
Job Responsibility
  • Define and evolve the enterprise security architecture, establishing the 12 to 18 month strategic vision and technical standards that guide the entire organization's security posture
  • Steer the creation of 'Golden Path' security patterns, approved, reusable frameworks that align with engineering excellence and reduce friction across teams
  • Influence decision-making by translating threat landscapes into actionable business risk assessments and investment priorities
  • Direct security governance programs, including oversight of vulnerability management, penetration testing strategies, and compliance assurance initiatives
  • Transform how security integrates with business operations by acting as the liaison between security, engineering, and IT departments
  • Champion budget planning and resource allocation for security improvement projects, ensuring strategic alignment with enterprise risk management
  • Drive the development of security policies and standards that balance robust protection with business agility and innovation
  • Establish thought leadership across the organization, setting the tone for security culture and embedding security-by-design principles company-wide
  • Collaborate with regulatory and legal teams to ensure all architectural decisions meet compliance requirements across jurisdictions
  • Mentor and guide security teams, fostering an environment of continuous learning and shared accountability for organizational resilience
  • Fulltime
Read More
Arrow Right

Lead Security Encryption Engineer

We are looking for an encryption expert! Join a high-impact security engineering...
Location
Location
United States , Charlotte; Chandler; Columbus; Irving; West Des Moines
Salary
Salary:
119000.00 - 187000.00 USD / Year
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
June 18, 2026
Flip Icon
Requirements
Requirements
  • 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 5+ years of intermediate to advanced level experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc.
  • 5+ years of Unix/Linux/Windows Systems Administration experience with in-depth knowledge of troubleshooting, OS hardening and OS tuning
  • 5+ years of experience with encryption or tokenization technologies
  • 3+ years of experience performing builds, administration and/or support of hardware security modules or security appliance devices
  • Advanced Knowledge of Cryptographic protocols & algorithms
  • Knowledge and understanding of Cryptographic Technologies and Key Management
  • Experience with Thales CipherTrust Key Manager and CipherTrust Transparent Encryption (CTE)
  • Understanding of (format preserving encryption) FPE, tokenization and TDE (transparent data encryption)
  • Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM’s
Job Responsibility
Job Responsibility
  • Design, build, and scale critical encryption and key management solutions
  • Work across Linux, Windows, and automation frameworks to harden systems, optimize performance, and drive secure architecture forward
  • Partner with engineering and operations teams to deliver resilient, scalable solutions
  • Actively mentor and develop team members by providing technical guidance, sharing best practices, and fostering a culture of continuous learning and security excellence
What we offer
What we offer
  • Health benefits
  • 401(k) Plan
  • Paid time off
  • Disability benefits
  • Life insurance, critical illness insurance, and accident insurance
  • Parental leave
  • Critical caregiving leave
  • Discounts and savings
  • Commuter benefits
  • Tuition reimbursement
  • Fulltime
Read More
Arrow Right

Information Security Lead

We’re hiring a Lead of Information Security, reporting to the VP of Technical Op...
Location
Location
United States , Philadelphia
Salary
Salary:
Not provided
Proscia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in information security, including direct experience improving, and contributing to GRC programs
  • Proven expertise in regulatory frameworks such as ISO 27001, SOC 2, GDPR, HIPAA, FedRAMP, TX-RAMP, StateRAMP or similar
  • Hands-on experience with vulnerability management tools, incident response, and security audits
  • Experience embedding security into software development lifecycles—DevSecOps principles applied in practice
  • Experience selecting, implementing, and managing security tooling (e.g., XDR, SIEM, endpoint, code scanning, etc.)
  • Exceptional communication and influencing skills across technical and non-technical teams
  • A high degree of autonomy and ownership—comfortable leading cross-functional efforts and prioritizing in a dynamic environment
  • You already use AI tools in your security work—for policy drafting, threat analysis, log review, control validation, or however it fits your practice
  • Experience with cloud-native environments (AWS preferred)
  • Experience building with or on top of LLMs, AI agents, or agentic pipelines
Job Responsibility
Job Responsibility
  • Manage and evolve vulnerability management— tooling, reporting, and remediation governance
  • Serve as a consultative security leader for Engineering, Product, and Customer teams—governing system designs, architecture, and implementation through a security-first lens
  • Implement AI native tooling to improve detection and response capabilities without incurring an increased demand on resources
  • Partner with Engineering to implement developer-friendly security tools that improve security posture and reduce compliance burdens without slowing velocity
  • Oversee incident response preparation, processes, and execution—ensuring coordinated action, effective communication, and the kind of thorough post-incident analysis that prevents the same problem twice
  • Under the direction VP, TechOps, improve the Proscia Information Security Program, with a focus on governance, risk, and compliance (GRC) across the Concentriq suite of applications and Proscia’s business applications
  • Contribute to security policy development across regulated and non-regulated markets—implementing agentic workflows where it accelerates your research and stress-testing, iterating with stakeholders, and maintaining the rigor and compliance standards our customers expect
  • Influence and execute on the company’s regulatory roadmap—seeking new certifications and frameworks (e.g., ISO 27001, SOC 2, HITRUST) in response to customer and market demands
  • Enable other teams to answer security-related questions from customers, prospects, and partners providing expert information security guidance
  • Anticipate and adapt to industry and regulatory trends, including how AI is reshaping both the threat landscape and the defender’s toolkit—and surface emerging requirements before they become urgent
What we offer
What we offer
  • Competitive pay
  • Savings options
  • Schedule options
  • Insurance options that promote long-term health and personal growth
  • Office environment designed for creativity and agility with walls as notepads and couches for collaboration
  • Located in the heart of Philadelphia with views of the city
  • Fulltime
Read More
Arrow Right

Lead, Security (OT Endpoint)

Our client is looking for a Lead Security Engineer to champion the stability, pe...
Location
Location
Malaysia , Kuala Lumpur
Salary
Salary:
19000.00 - 24000.00 MYR / Month
https://www.randstad.com Logo
Randstad
Expiration Date
July 03, 2026
Flip Icon
Requirements
Requirements
  • Strong technical proficiency in configuring and operating specialized OT security solutions like TXOne Stellar, Portable Inspectors, and Malware Check Stations
  • Solid capability to manage allow/deny lists, tune signatures, and ensure policy consistency without disrupting critical production environments
  • Hands-on expertise integrating endpoint telemetry and alerts into centralized monitoring platforms and ITSM systems
  • Deep understanding of troubleshooting complex security incidents and conducting thorough root-cause analyses
  • Ability to draft and maintain clear technical documentation, including runbooks, architecture diagrams, and SOPs to ensure audit readiness
Job Responsibility
Job Responsibility
  • Configure, deploy, and manage endpoint security components and malware check stations across various global sites
  • Continuously elevate and maintain stringent security baselines for all endpoints, including resource-constrained devices and legacy systems
  • Seamlessly integrate system health checks and telemetry into centralized dashboards, and automate routine packaging, updates, and remediation tasks
  • Investigate and troubleshoot security incidents, perform deep root-cause analysis, and establish strong preventive measures
  • Collaborate with internal stakeholders and external integration partners to maintain up-to-date service documentation and align with broader XDR security roadmaps
  • Fulltime
Read More
Arrow Right

Head of Enterprise Architecture - Security (FSI)

This is a high-impact leadership role where you will define and drive the organi...
Location
Location
Malaysia , Kuala Lumpur
Salary
Salary:
30000.00 - 35000.00 MYR / Month
https://www.randstad.com Logo
Randstad
Expiration Date
June 25, 2026
Flip Icon
Requirements
Requirements
  • Bachelor's degree in IT, Computer Science, or related field (Master's or professional certifications are advantageous)
  • Extensive experience in enterprise security architecture within complex, large-scale environments
  • Strong expertise across: Cloud security (AWS, Azure, or GCP)
  • Identity & Access Management (IAM)
  • Network and application security
  • Data protection and encryption standards
  • Zero-trust architecture
  • Proven ability to engage and influence C-level stakeholders on cybersecurity strategy
  • Hands-on experience with secure-by-design engineering and threat modelling
  • Strong knowledge of cybersecurity frameworks and standards such as ISO 27001, NIST, PCI-DSS, and regional regulatory requirements
Job Responsibility
Job Responsibility
  • Define and evolve enterprise-wide security architecture across cloud, IAM, network, application, and data domains
  • Drive adoption of zero-trust principles and modern threat detection capabilities
  • Align security architecture with enterprise IT strategy, cloud transformation, and business priorities
  • Provide strategic advisory to senior leadership on cybersecurity risks, controls, and technology investments
  • Establish and enforce security architecture standards across all technology initiatives
  • Ensure secure-by-design principles are embedded across programs and delivery teams
  • Oversee compliance with internal policies and external regulatory requirements
  • Partner with risk and audit teams to strengthen enterprise-wide security posture
  • Lead security transformation initiatives including cloud security uplift and legacy remediation
  • Drive security tooling optimisation and integration across complex environments
What we offer
What we offer
  • Attractive benefits package
  • Fulltime
!
Read More
Arrow Right