About the Role
We are looking for an experienced and passionate Application Security Architect with a strong background in software development and a deep interest in cybersecurity. You will join the team of one of our most prestigious clients to lead the design and implementation of secure application architectures in a highly regulated and innovation-driven environment.
This role is ideal for someone who has transitioned from software development or penetration testing into security architecture and wants to make a real impact on how secure applications are built from the ground up.
️ Responsibilities
* Design and implement secure architectures for enterprise-grade applications.
* Lead security architecture and code reviews (threat modeling, static/dynamic analysis, etc.).
* Advise development teams on secure coding practices (OWASP, SAST/DAST, etc.).
* Define and promote standards for authentication, certificate management, and cryptography.
* Translate complex technical security concepts into actionable insights for non-technical stakeholders.
* Act as a technical reference for application security within development and architecture teams.
* Contribute to enterprise security frameworks (IAM, network, interfaces).
* Train and mentor developers and software architects on security best practices.
Requirements
* 5+ years of experience in cybersecurity, with a strong focus on application security.
* Previous experience as a software developer or penetration tester.
* Deep knowledge of authentication, digital certificates, and cryptographic standards.
* Experience in security analysis of architectures and code.
* Familiarity with secure coding guidelines (e.g., OWASP Top 10, CWE).
* Ability to communicate technical risks to non-technical audiences.
* Experience mentoring or training technical teams.
* Advanced level of English and Spanish.
Nice to Have
* Experience in regulated environments (e.g., MDR, HIPAA, GxP).
* Background in the pharmaceutical or healthcare sector.
* Familiarity with tools like Burp Suite, ZAP, SonarQube, Snyk, etc.
* Knowledge of DevSecOps and secure CI/CD pipelines.
What we offer?
* Work with a global leader in the pharmaceutical industry.
* Hybrid work model with flexibility and work-life balance.
* Be part of a high-impact, security-first culture.
* Continuous learning and professional development opportunities.