Product Security Architect

Noblesoft Technologies
Irving, United States of America
4 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Irving, United States of America

Tech stack

Java
API
Amazon Web Services (AWS)
User Authentication
Azure
C++
Cloud Computing
Computer Security
Computer Programming
Software Design Patterns
Distributed Systems
Identity and Access Management
Information Systems Security Architecture Professional
Python
Network Security
OAuth
Open Web Application Security
PCI Data Security Standards
Public Key Infrastructure
Systems Development Life Cycle
Openid Connect
Security Assertion Markup Language (SAML)
Software Vulnerability Management
Scripting (Bash/Python/Go/Ruby)
Enterprise Software Applications
Spring Cloud
Software Security
Amazon Web Services (AWS)
Information Technology
IoT Security
Static Application Security Testing
Microservices
Dynamic Application Security Testing

Job description

The Product Security Team ensures security by design across product engineering and platform architecture. As a Product Security Architect, you will lead security assessments and architecture reviews for large-scale platforms, including IoT, APIs, cloud-native systems, and enterprise applications.

You will collaborate with engineering, architecture, and product teams to define security strategy, implement controls, and drive secure SDLC practices across the organization.

Responsibilities

  • Evaluate and improve security posture across IoT platforms, API ecosystems, cloud-native applications, and enterprise systems
  • Lead threat modeling, threat analysis, and security architecture reviews for new and existing products
  • Partner with development, architecture, and product teams to embed security-by-design principles
  • Provide guidance on secure architecture, design patterns, and risk mitigation strategies
  • Support implementation and optimization of application security tooling (SAST, DAST, SCA, API security tools) where needed
  • Define and enforce security requirements for large-scale distributed systems and cloud environments
  • Drive vulnerability management and remediation strategies across multiple product lines
  • Provide expertise in API security, identity and access management, and data protection mechanisms
  • Recommend and implement secure communication and infrastructure practices (TLS, certificates, secure networking, VPC, etc.)

Stay current on emerging threats in IoT, APIs, cloud platforms, and enterprise applications

Requirements

  • Bachelor s degree in Computer Science or related field
  • 8+ years of experience in product/application security or security architecture
  • Strong experience in:
  • Threat modeling and security architecture reviews
  • Vulnerability management and risk assessment
  • Securing large-scale applications, APIs, or IoT platforms
  • Experience working closely with engineering, architecture, and product teams
  • Solid understanding of:
  • OWASP Top 10
  • API Security (OWASP API Top 10)
  • Authentication and authorization (OAuth, SAML, OpenID Connect)
  • Secure communication protocols (TLS, PKI)
  • Experience with cloud platforms (AWS, Azure, or GCP) and secure deployment patterns
  • Understanding of attack surfaces, exploits, and secure design principles
  • Experience with Secure SDLC practices

Desired Skills

  • Experience in IoT security, telecom, or large enterprise environments
  • Exposure to API security platforms and microservices architecture
  • Programming or scripting experience (Java, Python, C/C++, etc.)
  • Experience working in large-scale, multi-product environments
  • Familiarity with security frameworks such as NIST, ISO27001, PCI-DSS, or FedRAMP
  • Relevant certifications such as CISSP, CEH, AWS Security, or similar

Apply for this position