Product Security Architect

The Product Security Team ensures security by design across product engineering and platform architecture. As a Product Security Architect, you will lead security assessments and architecture reviews for large-scale platforms, including IoT, APIs, cloud-native systems, and enterprise applications.

You will collaborate with engineering, architecture, and product teams to define security strategy, implement controls, and drive secure SDLC practices across the organization.

Responsibilities:

• Evaluate and improve security posture across IoT platforms, API ecosystems, cloud-native applications, and enterprise systems
• Lead threat modeling, threat analysis, and security architecture reviews for new and existing products
• Partner with development, architecture, and product teams to embed security-by-design principles
• Provide guidance on secure architecture, design patterns, and risk mitigation strategies
• Support implementation and optimization of application security tooling (SAST, DAST, SCA, API security tools) where needed
• Define and enforce security requirements for large-scale distributed systems and cloud environments
• Drive vulnerability management and remediation strategies across multiple product lines
• Provide expertise in API security, identity and access management, and data protection mechanisms
• Recommend and implement secure communication and infrastructure practices (TLS, certificates, secure networking, VPC, etc.)
• Stay current on emerging threats in IoT, APIs, cloud platforms, and enterprise applications

Must Have Skills

• Bachelor’s degree in Computer Science or related field
• 8 years of experience in product/application security or security architecture

Strong experience in:

• Threat modeling and security architecture reviews
• Vulnerability management and risk assessment
• Securing large-scale applications, APIs, or IoT platforms
• Experience working closely with engineering, architecture, and product teams
• Solid understanding of:
• OWASP Top 10
• API Security (OWASP API Top 10)
• Authentication and authorization (OAuth, SAML, OpenID Connect)
• Secure communication protocols (TLS, PKI)
• Experience with cloud platforms (AWS, Azure, or GCP) and secure deployment patterns
• Understanding of attack surfaces, exploits, and secure design principles
• Experience with Secure SDLC practices.

Desired Skills

• Experience in IoT security, telecom, or large enterprise environments
• Exposure to API security platforms and microservices architecture
• Programming or scripting experience (Java, Python, C/C , etc.)
• Experience working in large-scale, multi-product environments
• Familiarity with security frameworks such as NIST, ISO27001, PCI-DSS, or FedRAMP
• Relevant certifications such as CISSP, CEH, AWS Security, or similar

Job Type: Contract

Pay: $75.00 - $85.00 per hour

Work Location: In person

Salary : $75 - $85