Senior Security Architect
Share
Job Location:
Dallas, IA - USA
Monthly Salary:
Not Disclosed
Posted on:
11 hours ago
Vacancies:
1 Vacancy
Job Summary
Job Title: Senior Security Architect
Location: Dallas TX (Onsite at Client Location)
6 Months contract
About the Role
This role is meant for someone who can own security remediation end-to-end across a complex Azure ecosystem. Youll handle vulnerabilities across infrastructure applications AKS containers data platforms and core Azure services. Expect to engage directly with senior client leaders guide engineering teams and shape the clients overall security maturity.
Key Responsibilities
- Lead vulnerability remediation across a wide set of Azure and hybrid platforms including:
- Azure VMs (Windows/Linux)
- AKS clusters node pools and container registries
- App Services Function Apps Logic Apps
- Storage Accounts Databases Key Vaults Networking
- Container images (ACR) and CI/CD pipelines
- Review and guide fixes code-related vulnerabilities (SAST/DAST results secrets insecure dependencies).
- Build detailed hardening guides covering OS Azure services Kubernetes networks and identity layers.
- Work closely with infra DevOps SRE and app teams to implement hardening recommendations in a structured repeatable way.
- Drive large-scale backlog remediation-prioritize issues define workflows and ensure real progress week over week.
- Provide industry-standard best practices to uplift the clients overall security maturity including cloud posture management workload isolation network security identity hygiene and governance.
- Host daily client calls to walk through status blockers upcoming remediation tasks and architectural considerations.
- Document architecture gaps remediation approaches compliance alignment and long-term improvement plans.
- Act as senior advisor and escalation point for all security remediation streams.
- Coach and mentor teams executing remediation to ensure consistency and quality.
Required Skills & Experience
- 12 15 years of combined experience in security architecture cloud security infrastructure security or application security.
- Deep hands-on experience with Azure security across:
- Compute (VMs VMSS)
- Containers (AKS ACR)
- PaaS services (App Services Function Apps API Management)
- Identity & Access (Azure AD/Entra ID Managed Identities RBAC)
- Networking security (NSGs ASGs WAF Private Endpoints Firewall)
- Data security (Key Vault Storage SQL CosmosDB)
- Defender for Cloud and Azure Policy
- Strong exposure to Windows and Linux hardening.
- Ability to drive remediation across infrastructure application layers and cloud-native services.
- Strong architectural understanding of how vulnerabilities originate how they propagate across cloud resources and how to design long-term fixes.
- Experience resolving complex remediation backlogs in enterprise-scale environments.
- Excellent communication skills and confidence to lead daily discussions with senior client stakeholders.
- Strong documentation skills-ability to create clear hardening guides runbooks architectural diagrams and remediation plans.
Tools Knowledge
- Wiz (CSPM/CNAPP)
- ServiceNow (ticketing workflows reporting)
- Azure Portal Azure CLI ARM/Bicep familiarity
- Linux (RHEL/Ubuntu) and Windows Server environments
- Optionally: Defender for Cloud GitHub Advanced Security Qualys Aqua/Prisma or equivalent.
Nice to Have
- Certifications: CISSP CCSP AZ-500 AZ-305 CKA/CKS.
- Experience with IaC hardening (Terraform/Bicep) and DevSecOps practices.
- Background in threat modeling architecture risk reviews or cloud governance.
Note: Momento USA is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race color religion sex pregnancy sexual orientation gender identity national origin age protected veteran status or disability status.
Key Skills
- Apache Hive
- S3
- Redshift
- Spark
- AWS
- Solr
- NoSQL
- Data Warehouse
- Internet Of Things
- Kafka
- DynamoDB
- ZooKeeper
