Job ID: JOB_ID_3250
Job Overview
Client is seeking a Senior Cyber Security Architect / Engineer to strengthen the organizations application and cloud security posture. The role focuses on application security architecture, threat modeling, identity & access design, and Azure cloud security. The consultant will work closely with development teams and business stakeholders to ensure secure, scalable, and compliant solutions. The ideal candidate is a hands-on technical expert with extensive experience identifying, assessing, and remediating application security risks in enterprise environments.
Responsibilities
- Deploy and manage application security tools and standards across the organization
- Identify, analyze, and document application vulnerabilities
- Work with development teams to remediate security issues and improve secure coding practices
- Guide teams on secure design and Secure SDLC practices
- Track remediation progress and report security risk posture
- Conduct threat modeling exercises using frameworks such as STRIDE and MITRE ATT&CK
- Create data flow diagrams and threat models for critical applications
- Identify risks and recommend security mitigation strategies
- Design and implement secure authentication and authorization frameworks
- Integrate identity solutions with Microsoft Entra ID (Azure AD)
- Implement service-to-service authentication and secure API authorization
- Manage RBAC and Conditional Access policies
- Secure Azure cloud workloads and infrastructure
- Implement network security controls such as NSGs and private endpoints
- Manage secrets using Azure Key Vault
- Implement governance using Defender for Cloud and Azure Policy
- Implement monitoring and observability using Log Analytics and Microsoft Sentinel
- Deliver application security training and awareness sessions
- Work with business and engineering teams to ensure secure and compliant solutions
Required Skills
- 10+ years of experience in cybersecurity architecture and engineering
- Strong experience with Application Security and Secure SDLC
- Expertise in threat modeling frameworks (STRIDE, MITRE ATT&CK, C4 modeling)
- Experience with Microsoft Azure cloud security
- Experience with authentication and authorization frameworks (OAuth 2.0, OpenID Connect, SAML 2.0)
- Experience with Microsoft Entra ID (Azure AD) integration
- Knowledge of JWT validation and API security
- Experience implementing RBAC and Conditional Access policies
- Experience securing Azure workloads (App Services, Functions, AKS, Virtual Machines)
- Experience implementing secure network architecture (NSGs, private endpoints, firewalls)
- Experience managing secrets with Azure Key Vault
- Experience with Azure monitoring and security tools (Defender for Cloud, Log Analytics, Microsoft Sentinel)
- Experience identifying and remediating application vulnerabilities
- Knowledge of enterprise security frameworks such as NIST and OWASP Top 10
Preferred Skills
- Experience with threat modeling tools such as: Microsoft Threat Modeling Tool, ThreatModeler, IriusRisk, securiCAD
- Hands-on experience with security tools such as: RedSeal, Fortify, Burp Suite, Qualys, Wiz, CrowdStrike, Defect Dojo
Certifications
- Required: CISSP, Microsoft Azure Administrator (AZ-104)
- Preferred: CCSP, AZ-500, AZ-700, AZ-140
Special Requirements
Visa: USC & GC. Duration: 12 Months Contract. Potential for F2F interview for local candidates. Hybrid Onsite from Day 1.
Compensation & Location
Salary: $70 – $90 per year (Estimated)
Location: Fort Worth, TX
Recruiter / Company – Contact Information
Email: adarsh@staffxpertllc.com
Recruiter Notice:
To remove this job posting, please send an email from
adarsh@staffxpertllc.com with the subject:
DELETE_JOB_ID_3250