Enterprise Security Architect

We are recruiting a newly created Application Security Architect to strengthen and standardise application security across a federated global organization. Operating across semi-autonomous business units in the US and Europe, this role will elevate secure design practices across mixed cloud and on-prem environments, web and cloud-native applications, and diverse tech stacks.

We are seeking a former developer turned security architect who can credibly engage engineering teams, define practical security patterns, and influence adoption without formal authority. This is an architecture and evangelism role - not an infrastructure security or tooling implementation position.

• Co-define and drive the enterprise application security architecture and strategy.
• Create and promote secure design standards, reference architectures, and “golden paths.”
• Partner with development teams across business units to embed secure-by-design practices.
• Conduct architecture reviews and threat modelling early in the SDLC.
• Engage with the Enterprise Architecture committee and corporate development teams to ensure alignment.
• Raise application security maturity across varied tech stacks and geographies.

• Strong background as a software developer (expert in at least one language such as .NET/C#, Python, React/JS, etc.).
• Experience moving from development into application security or architecture.
• Proven ability to influence and partner with multiple development teams in a federated environment.
• Deep understanding of secure SDLC, modern architectures (APIs, microservices, cloud-native), and OWASP principles.
• Familiarity with SAST/DAST/SCA and related tools - from an architectural integration perspective.
• Comfortable operating as a trusted advisor and evangelist rather than a hands-on engineer or line manager.