×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Security Manager

Application Security Architect

Job in Roanoke, Roanoke County, Virginia, 24000, USA
Listing for: Altec Industries, Inc
Full Time position
Listed on 2026-06-01
Job specializations:
  • IT/Tech
    Cybersecurity, Security Manager
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below

Responsibilities

The Application Security Architect partners with software development, platform, cybersecurity, and cloud engineering teams to embed security throughout the modern software development lifecycle (SDLC). The role focuses on secure‑by‑design practices, Dev Sec Ops  strategy, roadmap and enablement, and risk‑based vulnerability management across internally developed, third‑party, SaaS, and cloud‑native applications. The App Sec Architect serves as the strategic owner of the Application Security Roadmap, defines target‑state App Sec maturity aligned to business growth, and prioritizes App Sec investments and tooling rationalization.

The role serves as a trusted advisor to development teams and the key contributor to the organization’s overall Secure Software Development Program.

Key Responsibilities
  • Embed application security controls into CI/CD pipelines, including automated SAST, DAST, IAST, SCA, secrets detection, and IaC scanning.
  • Establish standardized security controls across platforms.
  • Design exceptions and compensating controls.
  • Partner with development teams to implement shift‑left security while maintaining delivery velocity.
  • Define and maintain secure coding standards, security design patterns, and reference architectures.
  • Participate in architecture and design reviews, including threat modeling for new applications and major changes.
  • Perform research and development (R&D) into existing processes and tooling opportunities.
Application & Cloud Security Assessment
  • Identify and assess security risks in web, mobile, API, SaaS, and cloud‑native applications developed internally or by third parties.
  • Perform or coordinate:
    • Source code reviews (manual and automated)
    • Application vulnerability assessments and penetration tests
    • API and microservices security testing & analysis
    • Cloud configuration and IaC security reviews
  • Validate findings, reduce false positives, and prioritize remediation based on business risk.
  • Establish reusable security architecture patterns for cloud‑native and distributed systems.
Vulnerability & Risk Management
  • Manage application security findings through a centralized vulnerability or risk management platform.
  • Work with development teams to define practical, risk‑based remediation guidance.
  • Track remediation progress, verify fixes, and support exception/risk acceptance processes.
  • Contribute to application security metrics, KPIs, and executive‑level reporting.
  • Translate technical debt and vulnerabilities into business risk and exposure.
Open Source & Supply Chain Security
  • Assess and manage risks related to open‑source dependencies, libraries, and third‑party components.
  • Support Software Composition Analysis (SCA) and software supply chain security initiatives (e.g., dependency hygiene, SBOMs).
  • Evaluate security posture of third‑party applications and vendors in collaboration with risk management team.
  • Verify compliance with third‑party component licensing models.
Software Compliance
  • Lead software compliance activities related to application vulnerabilities, data exposure, or insecure design.
  • Support application‑related forensic analysis and root‑cause investigations.
  • Assist with compliance and assurance activities related to secure development (e.g., NIST, ISO, SOC, internal audits).
Enablement & Education
  • Develop and deliver application security training for developers and cybersecurity teams.
  • Provide hands‑on guidance and documentation to improve developer security maturity.
  • Act as a security champion advocate, helping teams make informed security decisions.
Required Education, Experience, and Skills
  • High School Diploma/GED Required.
  • Bachelor’s Degree (Technical Degree Preferred) and 6 Years Relevant Experience OR 8 Years Relevant Experience.
  • 1–2+ years of combined experience across software engineering, platform/cloud engineering, application security, & Dev Sec Ops  / SRE with strong cybersecurity ownership preferred.
    • 5+ years in hands‑on software engineering or platform/cloud engineering preferred.
    • 7+ years in application security, Dev Sec Ops , or secure architecture preferred.
  • Strong understanding of modern SDLCs, Agile, and CI/CD practices.
  • Hands‑on experience with at least one major…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search