Application Security Architect

Job Description:

Au10tix is at the forefront of identity verification and authentication, helping businesses and individuals stay secure in a digital-first world. As we expand our application security initiatives, we seek a talented Application Security Architect to join our team and work closely with development teams to integrate security into the software development lifecycle.

We seek a dynamic, motivated, and creative professional with a deep understanding of application security. The Application Security Architect will establish and maintain a robust application security program aligned with Au10tix’s business and security objectives. You will partner with internal teams to embed security tools and practices into the development lifecycle, ensuring high-quality and secure products.

Responsibilities:
Integrate security tools, standards, and processes into the Software Development Life Cycle (SDLC).
Establish and maintain secure development standards and guidelines.
Deliver secure coding training and ensure developers and QA teams have the necessary security knowledge.
Manage and enhance the deployment of application security tools, such as static and dynamic analysis tools (e.g., SAST, DAST, IAST).
Conducted and oversaw manual and automated penetration testing of applications.
Collaborate with internal and external stakeholders to perform third-party and vendor application security assessments.
Drive the integration of threat modeling practices into the development lifecycle.
Support incident response activities by providing application security expertise when required.
Define security requirements for test-driven design and architecture reviews.
Produce and communicate metrics to report on the state of the application security program and team performance.
Partner with DevOps teams to implement secure CI/CD pipelines and runtime security best practices.
Establish relationships with Managed Security Service Providers for comprehensive application security services.
Requirements:
3-6 years of experience in application security, with a strong focus on integrating security into software development.
Familiarity with cloud environments (mainly Azure) and their specific security considerations.
In-depth knowledge of secure coding practices and the ability to translate these concepts into actionable guidance.
Hands-on experience with application security tools, such as Checkmarx, Fortify, Veracode, or equivalent.
Experience with agile and DevOps methodologies, including integrating security into CI/CD pipelines.
Excellent verbal and written communication skills, with the ability to present complex concepts to diverse audiences.

Preferred Qualifications:

Bachelor’s degree in Computer Science, Information Security, or a related field.
Experience managing penetration testing programs and working with third-party security vendors.
Familiarity with security frameworks and architectures, such as SABSA, NIST, or MITRE ATT&CK.

Why Join Au10tix?

Au10tix is committed to innovation and excellence, fostering a culture of continuous learning and growth. As a team member, you will work on cutting-edge projects in a collaborative and inclusive environment, and your expertise will directly impact the security of our products and services.

We encourage you to apply if you’re passionate about application security and ready to lead transformative initiatives!