We are hiring for an Application Security Architect with 6 to 9 years of experience for a role based in Gurgaon. The candidate will be responsible for designing and implementing secure application architecture for AWS-hosted environments. Key responsibilities include ensuring secure-by-design initiatives across the SDLC, conducting threat modeling, and producing Architecture Decision Records (ADRs). The role involves close collaboration with DevOps, software engineers, security teams, and cloud architects.
The candidate will define secure coding standards, design CI/CD security pipelines, and integrate tools such as SAST, DAST, MAST, SCA, and IaC scanning. You’ll develop security reference architectures for AWS microservices, containers, and serverless setups. The role also involves incident response, vulnerability remediation, and participating in governance, audits, and compliance.
Required qualifications include 7+ years in application security or related roles, with 3+ years of hands-on AWS experience using services like IAM, KMS, Terraform, and CodePipeline. Proficiency in Python, Java, Go, or Node.js, along with knowledge of OWASP Top 10 and STRIDE threat modeling, is expected. Security certifications such as GWEB, GPEN, or AWS Certified Solutions Architect are highly desirable.
