Security Architect
Role details
Job location
Tech stack
Job description
- Senior Security Solutions Architect supporting Hilton's customer-facing platforms (web, mobile, APIs, payments, property systems)
- Focus on embedding security into architecture design across the SDLC
- Heavy collaboration with engineering, product, architecture, and security teams
- Responsible for end-to-end secure designs, reference architectures, and governance reviews
- Highly strategic + hands-on architecture role (not pure security ops), * Lead secure solution design across APIs, cloud, identity, data flows, and integrations
- Translate business/product requirements * secure architecture patterns
- Develop security reference architectures + reusable patterns
- Conduct architecture reviews + risk identification + mitigation planning
- Create artifacts: diagrams, data flows, security controls, design documentation
- Partner cross-functionally to balance security, scalability, and delivery speed
Requirements
Must Have Skills: Application Development, Security Architecture, Hands-on Engineering, API Security, IAM (OAuth2/OIDC/SAML), Cloud Security (AWS preferred), Secure SDLC/CI-CD, * 7+ years in tech (engineering, security, architecture)
-
5+ years hands-on engineering or app delivery experience
-
3+ years solution/enterprise architecture experience
-
Strong experience in one or more:
-
Application/Product Security
-
API Security
-
IAM / Customer Identity
-
Cloud Security (AWS preferred)
-
Cryptography / Data protection
-
Deep understanding of:
-
OAuth2, OpenID Connect, SAML
-
Secure SDLC + CI/CD security
-
Encryption, secrets management, logging/monitoring
-
Experience supporting enterprise-scale, customer-facing platforms, * Certifications: CISSP, CCSP, AWS, TOGAF
-
Experience in hospitality, ecommerce, payments, travel
-
Familiarity with frameworks: PCI, NIST, SOC2, ISO, GDPR, * Hands-on engineering vs security architecture depth
-
Experience with customer-facing platforms (web/mobile/APIs/payments)
-
Real-world secure architecture design examples
-
Expertise in OAuth2 / OIDC / API Security / IAM
-
Experience in cloud environments (AWS/Azure)
-
Ability to influence engineering teams and architecture governance