Monday, May 18, 2015

Security Jobs: Application Security Architect, Phoenix, AZ, Relocation Paid

Application Security Architect

Location: AZ-Phoenix 
Compensation: $100,000 - $120,000+ Base Range, Strong Bonus 
Relocation: Yes 
Education: BA/BS, Masters Preferred has been engaged by a global client where we've placed the CISO and most of the information security team to find an Application Security Architect.  This role requires a security architect who can design end-to-end solutions around applications.

In this role, you will consult with IT on the acquisition and implementation of vendor applications such as SAP.  You will assist the custom development team with building security into the software development life cycle.  You will perform light penetration testing, assisting the application development team with code analysis and you will collaborate with the internal audit team.  

The security professional who assumes this role will: 

  • Evaluate security technologies to recommend upgrades to the organization’s security needs. 
  • Assess the organization’s technology needs. Set direction and lead improvement of techniques, methodologies and deliverables. 
  • Create solutions and support models for technology encompassing multiple platforms.
  • Create short-term and long-term enterprise system technology road maps based on organizational strategic requirements and business needs. 
  • Use metrics to improve processes. Define and review reports to ensure all services are delivered successfully. 
  • Work closely with information systems teams and outsourcing partners to ensure that technology solutions are effectively delivered. 
  • Ensure a thorough analysis of service results and respond to any escalated service delivery issues. 


  • A BA/BS in Computer Science, Information Systems or related field is required.
  • 8 or more years of experience in information technology with at least 5 years of experience working with information security systems technologies that includes application security.
  • A background in application development / software development preferred.
  • Experience with secure coding / secure software development / application security practices.
  • Skills to include Fortify, Web Inspect, AppScan, Metasploit, nmap, etc. appreciated.
  • Demonstrated understanding of infrastructure design and support concepts. 
  • Demonstrated experience with information security architecture protocols to include Web Services, SOA, HTTP(s), SNMP, etc. 
  • Experience with Microsoft .NET is strongly preferred. 
  • Information security certifications such as: CISSP, MCSE, CSSLP, GSSP-.NET preferred.
  • Experience with threat modeling, vulnerability assessments, network and server security, firewalls, VPN, Anti-Virus, PIM, SIEM, DLP, IAM, IRM, Security Analytics, Patch Management, etc. 
  • Experience with FIPS, Common Criteria, etc preferred.'s Security Recruiter Blog