STAND 8 provides end to end IT solutions to enterprise partners across the United States and with offices in Los Angeles, New York, New Jersey, Atlanta, and more including internationally in Mexico and India.
We are seeking an experienced Security Architect to lead a high-volume application security assessment program across the enterprise. This role is responsible for conducting comprehensive security design reviews across SaaS, on-premises, and IaaS-hosted applications, evaluating security controls, identifying gaps, and providing actionable remediation guidance. The Security Architect will collaborate with application owners, enterprise teams, and third-party vendors while ensuring all assessments and deliverables are accurately documented and tracked. This position plays a critical role in strengthening the organization's application security posture and supporting enterprise security objectives.
Location & Work Type
Location: New York, NY or Los Angeles, CA
Work Type: On-site
Key Responsibilities
Conduct end-to-end security design reviews for 50+ applications across SaaS, on-premises, and IaaS environments.
Perform full-stack assessments covering client-side, backend, infrastructure, and platform security layers.
Evaluate security controls against application functionality, activity scope, trust boundaries, and business requirements.
Document findings, control gaps, risk observations, and recommendations using standardized Word and Excel templates.
Identify, track, and maintain the status of critical security controls across applications in scope.
Apply security standards and frameworks including NIST CSF, NIST SP 800-53, CIS Controls, and ISO 27001.
Maintain accurate assessment tracking and deliverable management within Asana.
Engage application owners, product teams, and vendors to gather information and assess security posture.
Provide prioritized mitigation recommendations aligned with enterprise security policies and standards.
Participate in weekly status meetings to communicate progress, risks, blockers, and completed assessments.
Report assessment outcomes and recommendations to Information Security leadership and key stakeholders.
Communicate technical findings effectively to both technical and non-technical audiences.
Qualifications
Required:
5+ years of experience in information security, with a focus on application security architecture or security assessments.
Demonstrated experience conducting security design reviews or threat modeling for enterprise applications (SaaS, IaaS, and on-premises).
Strong working knowledge of security control frameworks (NIST CSF, NIST SP 800-53, CIS Controls, ISO 27001).
Familiarity with full-stack application security concepts including authentication, authorization, encryption, API security, network segmentation, and data protection.
Experience working directly with application owners, product teams, and vendors in an enterprise environment.
Strong written communication skills — ability to produce clear, structured assessment documentation in Word and Excel.
Highly organized with demonstrated ability to manage multiple concurrent assessments and track deliverables (Asana or similar project management tools).
Preferred (Optional):
Relevant certifications: CISSP, CCSP, CISM, CSSLP, or equivalent.
Familiarity with cloud security principles across AWS, Azure, or GCP.
Experience applying security standards to vendor/third-party risk assessments.
Prior experience working within media, entertainment, or large-scale enterprise environments.
Benefits
Medical coverage and Health Savings Account (HSA) through Anthem
Dental/Vision/Various Ancillary coverages through Unum
401(k) retirement savings plan
Paid-time-off options
Company-paid Employee Assistance Program (EAP)
Discount programs through ADP WorkforceNow
Additional Details
The base range for this contract position is $75 – $85 / per hour, depending on experience. Our pay ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target for new hires of this position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Qualified applicants with arrest or conviction records will be considered.
About Us
STAND 8 provides end-to-end IT solutions to enterprise partners across the United States and globally with offices in Los Angeles, Atlanta, New York, Mexico, Japan, India, and more. STAND 8 focuses on the “bleeding edge” of technology and leverages automation, process, marketing, and over fifteen years of success and growth to provide a world-class experience for our customers, partners, and employees.
Our mission is to impact the world positively by creating success through PEOPLE, PROCESS, and TECHNOLOGY.
Check out more at www.stand8.io; and reach out today to explore opportunities to grow together!
By applying to this position, your data will be processed in accordance with the STAND 8 Privacy Policy.