Application Security Architect - London/Remote

Application Security Architect – London/Remote

Atrium UK is seeking an experienced Application Security Architect to collaborate with engineering and solution architecture teams, develop technical requirements, and ensure integrated, compliant solutions. This remote role requires occasional visits to the London office; candidates must be UK-based and able to travel as needed. The role offers PAYE/umbrella options and is inside IR35. Responsibilities include investigating complex incidents, communicating risk management strategies to senior management, and managing application security from inception to completion.

1. Manage a portfolio of applications and projects, implementing appropriate security controls.
2. Understand core business operations, healthcare models, key systems, contacts, and priorities.
3. Keep security policies and procedures current and ensure compliance with standards.
4. Conduct vulnerability testing, risk analysis, and security assessments.
5. Collaborate effectively with business partners to find practical security solutions.
6. Analyze customer needs to ensure security and business requirements are met.
7. Maintain accountability, ownership of issues, and drive remediation efforts.
8. Apply business acumen to develop solutions aligned with organizational risks and objectives.
9. Translate business needs into security requirements and communicate risks effectively to non-technical stakeholders.
10. Manage activities to meet deadlines and stay updated on industry trends, standards, and regulations.

Essential Qualifications and Experience:

• Extensive experience in application security architecture.
• Experience in large, regulated, and agile organizations.
• Practical knowledge of security policies, standards, and implementation.
• Expertise in security technology aspects.
• Experience integrating security into development pipelines and DevOps, with a focus on user-centric design and software development.
• Knowledge of GDPR, HIPAA, PCI frameworks.
• Security certifications such as CISSP, CCSP, CEH, or cloud certifications (Azure, AWS).
• Understanding of development and architecture roles like DevOps, SRE, and Solution Architect.
• Proficiency in secure development practices, OWASP, MITRE, especially on cloud platforms.
• Strong communication skills for stakeholder engagement at all levels.
• Experience in security pattern development for UI, API, and microservices.
• Threat modeling and dynamic security testing skills.
• Development experience in .NET and/or Java, scripting skills (Python, PowerShell, Bash), and web/API development (TypeScript, React).
• Knowledge of cryptography concepts.
• Business analysis skills, including requirements gathering and use case modeling.
• Familiarity with security technologies like IDS, email gateways, SIEM, SOAR, web application firewalls, and vulnerability management tools.

Click Apply now to be considered for the Application Security Architect – London/Remote role