Cybersecurity Architect
Glocomms is partnering with a growing technology organization that is seeking an experienced Cybersecurity Architect to lead and mature application security initiatives across a diverse technology environment. This individual will partner closely with software engineering, architecture, infrastructure, and product teams to embed security throughout the software development lifecycle.
The role combines hands-on technical security work with strategic influence, helping drive secure development practices across cloud applications, APIs, IoT-connected systems, and emerging AI-enabled technologies.
Responsibilities
- Lead application security efforts, including vulnerability management and remediation prioritization.
- Review findings from security tools such as SAST, DAST, SCA, penetration testing, and other assessments.
- Conduct threat modeling and participate in architecture and design reviews for new applications and systems.
- Perform targeted code reviews focused on high-risk components, authentication, authorization, and API security.
- Partner with engineering teams to integrate security controls into CI/CD pipelines and DevSecOps processes.
- Develop and maintain security automation to improve detection, validation, and remediation workflows.
- Provide guidance on cloud application security, identity management, secrets management, and secure system design.
- Support security initiatives related to AI/LLM technologies, including data protection, prompt validation, and model security considerations.
- Deliver secure coding guidance, training, and best practices to development teams.
- Assist with incident response activities, security investigations, and continuous improvement initiatives.
Qualifications
- 8+ years of experience in Application Security, Software Engineering, DevSecOps, or a related cybersecurity discipline.
- Strong understanding of secure software development practices and common application security vulnerabilities.
- Experience with application security tools such as SAST, DAST, SCA, IAST, and WAF technologies.
- Proficiency with at least one programming language such as Python, JavaScript, C#, or similar.
- Knowledge of cloud-native environments, Kubernetes, and modern software architectures.
- Experience integrating security into CI/CD pipelines and development workflows.
- Strong communication skills with the ability to influence technical teams and stakeholders.
- Familiarity with AI/LLM security concepts is a plus.
- Bachelor's degree in Computer Science, Engineering, Cybersecurity, or a related field.
Additional Information
- Hybrid work environment of 4 days onsite and 1 day remote
- Candidates must be authorized to work in the United States; sponsorship is not available for this position
- Competitive compensation, bonus potential, and comprehensive benefits package
FAQs
Congratulations, we understand that taking the time to apply is a big step. When you apply, your details go directly to the consultant who is sourcing talent. Due to demand, we may not get back to all applicants that have applied. However, we always keep your resume and details on file so when we see similar roles or see skillsets that drive growth in organizations, we will always reach out to discuss opportunities.
Yes. Even if this role isn’t a perfect match, applying allows us to understand your expertise and ambitions, ensuring you're on our radar for the right opportunity when it arises.
We also work in several ways, firstly we advertise our roles available on our site, however, often due to confidentiality we may not post all. We also work with clients who are more focused on skills and understanding what is required to future-proof their business.
That's why we recommend registering your resume so you can be considered for roles that have yet to be created.
Yes, we help with resume and interview preparation. From customized support on how to optimize your resume to interview preparation and compensation negotiations, we advocate for you throughout your next career move.
