Application Security Architect

A great client of mine is hiring a Security-Focused Technical Consultant / Security Architect to join a highly regulated healthcare tech environment. You’ll work cross-functionally with engineering, architecture, and business teams to design secure solutions, manage risks, and ensure compliance across a portfolio of applications.

Length: Initial 7 months with chance to extend or go perm.

IR35: Inside

Work structure: Remote

🔐 Key Responsibilities:

• Partner with engineering and architecture to define secure technical solutions
• Manage end-to-end project security across multiple applications
• Perform vulnerability testing, threat modelling, and risk assessments
• Maintain up-to-date security policies, standards, and best practices
• Communicate risks and mitigation strategies to senior stakeholders
• Translate business needs into effective security controls

🧠 Key Skills & Experience:

• 5+ years in security architecture or consulting in regulated environments
• Deep knowledge of secure SDLC, DevSecOps, cloud (Azure/AWS), and frameworks (OWASP, MITRE)
• Hands-on experience with vulnerability tools, threat modelling, and compliance (GDPR, HIPAA, PCI)
• Strong communication and stakeholder engagement skills
• Technical knowledge across .NET, Java, scripting (Python, PowerShell), APIs, and cryptography

Nice to have: Certifications (CISSP, CEH, CCSP), experience with SIEM/SOAR tools, business analysis, and working with agile delivery teams.