Product Security Architect

Job Title: Product Security Architect

Job Location: Irving TX (Hybrid 3 days onsite/ week)

Job Duration: 12 months

Minimum years of experience required: 8 years

Type of Hire: W2

JOB DETAILS:

The Product Security Team ensures security by design across product engineering and platform architecture. As a Product Security Architect you will lead security assessments and architecture reviews for large-scale platforms including IoT APIs cloud-native systems and enterprise applications.

You will collaborate with engineering architecture and product teams to define security strategy implement controls and drive secure SDLC practices across the organization.

Responsibilities

• Evaluate and improve security posture across IoT platforms API ecosystems cloud-native applications and enterprise systems
• Lead threat modeling threat analysis and security architecture reviews for new and existing products
• Partner with development architecture and product teams to embed security-by-design principles
• Provide guidance on secure architecture design patterns and risk mitigation strategies
• Support implementation and optimization of application security tooling (SAST DAST SCA API security tools) where needed
• Define and enforce security requirements for large-scale distributed systems and cloud environments
• Drive vulnerability management and remediation strategies across multiple product lines
• Provide expertise in API security identity and access management and data protection mechanisms
• Recommend and implement secure communication and infrastructure practices (TLS certificates secure networking VPC etc.)

Stay current on emerging threats in IoT APIs cloud platforms and enterprise applications

Must Have Skills

• Bachelor s degree in Computer Science or related field
• 8 years of experience in product/application security or security architecture
• Strong experience in:
  • Threat modeling and security architecture reviews
  • Vulnerability management and risk assessment
  • Securing large-scale applications APIs or IoT platforms
• Experience working closely with engineering architecture and product teams
• Solid understanding of:
  • OWASP Top 10
  • API Security (OWASP API Top 10)
  • Authentication and authorization (OAuth SAML OpenID Connect)
  • Secure communication protocols (TLS PKI)
• Experience with cloud platforms (AWS Azure or GCP) and secure deployment patterns
• Understanding of attack surfaces exploits and secure design principles
• Experience with Secure SDLC practices

Desired Skills

• Experience in IoT security telecom or large enterprise environments
• Exposure to API security platforms and microservices architecture
• Programming or scripting experience (Java Python C/C etc.)
• Experience working in large-scale multi-product environments
• Familiarity with security frameworks such as NIST ISO27001 PCI-DSS or FedRAMP
• Relevant certifications such as CISSP CEH AWS Security or similar