ConsultNet
Title : Application Security Architect
Location
: Rockville, Maryland Target Start Date :
ASAP Type : contract Pay
Rate : DOE
We are seeking a Senior Application Security Architect to lead the design and implementation of robust, enterprise-wide application security architecture. This role is instrumental in shaping security strategy, setting technical standards, and integrating security practices across the software development lifecycle (SDLC). You'll collaborate with cross-functional teams to embed security into every layer of the application stack, ensuring both innovation and protection align with business objectives.
Key Responsibilities rchitectural Leadership
Design and maintain enterprise-wide application security frameworks, standards, and reference models. Lead architectural reviews and design sessions to identify risks and recommend security controls.
Security by Design
Define secure coding standards and security requirements tailored to application type, risk, and data sensitivity. rchitect solutions for authentication, authorization, encryption, and secure communications.
Threat Modeling & Risk Management
Develop and facilitate threat modeling (e.g., STRIDE, PASTA, OCTAVE) and integrate findings into development cycles. Establish security guardrails for cloud-native, serverless, and infrastructure-as-code deployments.
DevSecOps & Automation
Integrate security into CI/CD pipelines to support DevSecOps practices. Leverage GenAI technologies to enhance architecture reviews and automate security assessments.
Cloud & API Security
Design API security strategies including OAuth/OIDC, gateway enforcement, and rate limiting. Build secure patterns for multi-cloud environments (AWS, Azure, GCP).
Collaboration & Enablement
Partner with engineering teams to design secure, scalable solutions that align with business goals. Develop security roadmaps and lead enterprise-wide security initiatives. Deliver security training and promote awareness among developers, architects, and stakeholders.
Standards & Compliance
Define and maintain security baselines across platforms (web, mobile, microservices). Ensure compliance with regulations (e.g., PCI-DSS, GDPR, SOX) through sound architectural practices. Document decisions, reusable patterns, and reference implementations.
Qualifications
Bachelor's degree in Computer Science, Information Security, or related field 5+ years in application security, with 2+ years focused on security architecture Deep knowledge of secure design principles, threat modeling, and application security patterns Hands-on experience with SAST, DAST, IAST, SCA tools, and manual testing (Burp Suite, OWASP ZAP, etc.) Proficiency in secure development and DevSecOps practices Familiarity with cloud security (AWS, Azure, GCP) and containerized architectures Expertise in secure API design and modern authentication protocols (OAuth 2.0, OIDC, SAML, MFA) Strong coding skills (preferred: Java, Python, JavaScript) and experience with code review Knowledge of regulatory requirements and their impact on security design Excellent communication skills to bridge technical and business perspectives Experience leading strategic initiatives and influencing cross-functional teams Preferred certifications: CISSP, CSSLP, AWS Security Specialty, or similar
Ideal Candidate You're a strategic thinker who can architect secure solutions at scale, drive organizational change, and balance risk with innovation. Your ability to communicate complex security concepts and partner with engineering teams makes you a trusted advisor in shaping secure digital experiences.
Welcome to ConsultNet and the family of companies, Tekne, SaltClick, TechBridge, and OmniMedia. As a premier national provider of technology talent and solutions, our expertise spans across project services, contract-to-hire, direct placement, and managed services both onshore and nearshore.
Celebrating more than 25 years of partnership with a diverse client base, we've crafted rewarding opportunities for our consultants, fostering high-performing teams that deliver impactful results.
Over the last few years thousands of consultants have found their calling with us in roles that have made a meaningful impact on their lives, enhanced their career, challenged them, and propelled them towards achieving their personal and professional goals. At the ConsultNet family of companies, we believe effective communication is crucial in aligning the right job with your unique skills and professional aspirations. To us, it's all about the personal approach we take and the values we uphold.
Our comprehensive service offerings cover a wide range of technology positions across key markets nationwide. Client more at www.consultnet.com .
We champion equality and inclusivity, proudly supporting an Equal Opportunity Employer policy. We welcome applicants regardless of Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other status protected by law.
: Rockville, Maryland Target Start Date :
ASAP Type : contract Pay
Rate : DOE
We are seeking a Senior Application Security Architect to lead the design and implementation of robust, enterprise-wide application security architecture. This role is instrumental in shaping security strategy, setting technical standards, and integrating security practices across the software development lifecycle (SDLC). You'll collaborate with cross-functional teams to embed security into every layer of the application stack, ensuring both innovation and protection align with business objectives.
Key Responsibilities rchitectural Leadership
Design and maintain enterprise-wide application security frameworks, standards, and reference models. Lead architectural reviews and design sessions to identify risks and recommend security controls.
Security by Design
Define secure coding standards and security requirements tailored to application type, risk, and data sensitivity. rchitect solutions for authentication, authorization, encryption, and secure communications.
Threat Modeling & Risk Management
Develop and facilitate threat modeling (e.g., STRIDE, PASTA, OCTAVE) and integrate findings into development cycles. Establish security guardrails for cloud-native, serverless, and infrastructure-as-code deployments.
DevSecOps & Automation
Integrate security into CI/CD pipelines to support DevSecOps practices. Leverage GenAI technologies to enhance architecture reviews and automate security assessments.
Cloud & API Security
Design API security strategies including OAuth/OIDC, gateway enforcement, and rate limiting. Build secure patterns for multi-cloud environments (AWS, Azure, GCP).
Collaboration & Enablement
Partner with engineering teams to design secure, scalable solutions that align with business goals. Develop security roadmaps and lead enterprise-wide security initiatives. Deliver security training and promote awareness among developers, architects, and stakeholders.
Standards & Compliance
Define and maintain security baselines across platforms (web, mobile, microservices). Ensure compliance with regulations (e.g., PCI-DSS, GDPR, SOX) through sound architectural practices. Document decisions, reusable patterns, and reference implementations.
Qualifications
Bachelor's degree in Computer Science, Information Security, or related field 5+ years in application security, with 2+ years focused on security architecture Deep knowledge of secure design principles, threat modeling, and application security patterns Hands-on experience with SAST, DAST, IAST, SCA tools, and manual testing (Burp Suite, OWASP ZAP, etc.) Proficiency in secure development and DevSecOps practices Familiarity with cloud security (AWS, Azure, GCP) and containerized architectures Expertise in secure API design and modern authentication protocols (OAuth 2.0, OIDC, SAML, MFA) Strong coding skills (preferred: Java, Python, JavaScript) and experience with code review Knowledge of regulatory requirements and their impact on security design Excellent communication skills to bridge technical and business perspectives Experience leading strategic initiatives and influencing cross-functional teams Preferred certifications: CISSP, CSSLP, AWS Security Specialty, or similar
Ideal Candidate You're a strategic thinker who can architect secure solutions at scale, drive organizational change, and balance risk with innovation. Your ability to communicate complex security concepts and partner with engineering teams makes you a trusted advisor in shaping secure digital experiences.
Welcome to ConsultNet and the family of companies, Tekne, SaltClick, TechBridge, and OmniMedia. As a premier national provider of technology talent and solutions, our expertise spans across project services, contract-to-hire, direct placement, and managed services both onshore and nearshore.
Celebrating more than 25 years of partnership with a diverse client base, we've crafted rewarding opportunities for our consultants, fostering high-performing teams that deliver impactful results.
Over the last few years thousands of consultants have found their calling with us in roles that have made a meaningful impact on their lives, enhanced their career, challenged them, and propelled them towards achieving their personal and professional goals. At the ConsultNet family of companies, we believe effective communication is crucial in aligning the right job with your unique skills and professional aspirations. To us, it's all about the personal approach we take and the values we uphold.
Our comprehensive service offerings cover a wide range of technology positions across key markets nationwide. Client more at www.consultnet.com .
We champion equality and inclusivity, proudly supporting an Equal Opportunity Employer policy. We welcome applicants regardless of Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other status protected by law.