Senior Security Architect

Summary

Join Kaseya, a leading provider of IT infrastructure and security management solutions, as a Senior Application Security Architect. You will be responsible for planning, coordinating, and executing initiatives to improve the security posture of Kaseya's infrastructure. This role involves designing, implementing, and maintaining robust security measures to defend against potential threats. The position is 100% remote, offering a unique opportunity to work on a wide variety of interesting technical problems at scale. You will have the chance to develop greenfield solutions and operate with autonomy and empowerment. Kaseya is seeking a technical contributor with experience in application security architecture, effective communication, and project management skills.

Requirements

• Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Systems, or related field
• 7+ years of experience in application security, software architecture, or related roles
• Deep understanding of OWASP Top 10, CWE/SANS Top 25, and common vulnerability patterns
• Hands-on experience with AppSec tools (SAST, DAST, IAST, SCA, RASP)
• Strong background in secure coding practices for languages such as C#, Java, .NET, Python, JavaScript, etc
• Experience with cloud-native application security (AWS, Azure, GCP)
• Familiarity with modern DevOps/CI/CD pipelines and containerized environments (e.g., Docker, Kubernetes)

Responsibilities

• Assist with the development and maintenance of enterprise-wide security architecture frameworks
• Provide guidance and recommendations for the development of security policies and standards
• Conduct risk assessments and threat modeling (DREAD) for all enterprise infrastructure components
• Ensure infrastructure design adheres to regulatory and compliance requirements (e.g., ISO 27001, NIST, GDPR, HIPAA)
• Provide guidance and support to project teams, developers, and IT operations with the design of secure enterprise systems
• Assist with architecture planning, integrations, disaster recovery strategy
• Evaluate new technologies and assist with the secure design to ensure alignment with enterprise architectural standards
• Work with stakeholders to assist with the successful implementation of secure applications and infrastructure
• Ensure thorough documentation of tickets, meetings, and interactions with fellow engineers and requestors
• Assist with the planning, development, and execution of security initiatives focused on applications
• Identify trends in need of a larger solution, beyond the scope of the immediate problem
• Assist with the evaluation of tools to ensure that the appropriate security solutions are implemented, effectively meeting or surpassing the company's use cases and requirements
• Perform other security related duties as assigned
• Limited off-hours support is required
• Limited travel may be required
• Design and maintain secure application architecture principles, blueprints, and patterns
• Define and enforce secure-by-design practices across all application development efforts
• Collaborate with development and engineering teams to embed security throughout the software development lifecycle (SDLC)
• Conduct and lead threat modeling sessions for new and existing applications
• Assess application security risks and provide actionable recommendations
• Translate complex technical risks into business-impacting language for stakeholders
• Provide guidance on secure coding practices to development teams
• Support secure API design, identity and access management (IAM) in apps, and data protection controls
• Integrate application security tools (SAST, DAST, IAST, SCA) into CI/CD pipelines to enable DevSecOps
• Perform and support secure code reviews (manual and automated)
• Coordinate or conduct application penetration testing and vulnerability assessments
• Work with development teams to triage, prioritize, and remediate security findings
• Define and maintain application security policies, standards, and guidelines
• Ensure applications meet internal security requirements and external regulatory obligations (e.g., PCI-DSS, SOC 2, GDPR)
• Document architectural decisions, exception handling, and risk acceptances
• Act as a trusted advisor to development, product, and infrastructure teams
• Partner with internal teams to integrate security early in product design
• Evangelize application security best practices and drive cultural change
• Develop and deliver training and awareness programs for secure coding and AppSec tooling
• Mentor developers, architects, and security engineers on secure development principles
• Assist in application-layer security incident investigations and post-incident reviews
• Provide architectural input to prevent future vulnerabilities or exposures
• Provide security advice to Product and Business Units, ensuring integration, compliance, and risk mitigation
• Assist with establishing secure patch management and vulnerability remediation processes
• Proficiency with Infrastructure as Code (IaC) and its supporting technologies, such as: Terraform, CloudFormation, code depositories and deployment pipelines
• Collaborate with DevSecOps on initiatives to integrate security into CI/CD pipelines and IaC
• Provide guidance on how to build secure platforms that are stable, maintainable, and scalable
• Provided guidance on the implementation of cloud-native security controls including IAM policies, key management, and logging
• Define architecture standards for secure cloud networking, workload protection, and encryption
• Provide security advice to Product and Business Units, ensuring integration, compliance, and risk mitigation
• Assist with the documentation and maintenance of cloud security standards and best practices

Preferred Qualifications

• CISSP (Certified Information Systems Security Professional)
• CSSLP (Certified Secure Software Lifecycle Professional)
• OSWE (Offensive Security Web Expert)
• CCSP (Certified Cloud Security Professional)
• AWS/Azure/GCP Security Specialty Certifications
• TOGAF or SABSA Certification (preferred)

Benefits

This position is 100% remote