Sr. Application Security Architect

Locations: Roseland, New Jersey, United States | Alpharetta, Georgia, United States

Employment Type: FULL_TIME

Salary: USD $91,900.00 - USD $246,240.00 / Year

About the Position

ADP is hiring a Senior Application Security Architect to join our Product Security organization within ADP’s Global Security Organization (GSO). This role is pivotal in enabling secure development and supporting the delivery of trusted products, solutions, and services across the entire ADP ecosystem.

Responsibilities

• Partner with global product and engineering teams to design, review, and evolve secure application architectures across multi-country environments.
• Influence technical leaders-solution architects, security champions, engineering managers, and developers-to adopt secure-by-design principles and continuously improve security maturity.
• Conduct in-depth security architecture reviews and provide clear, actionable security requirements, design guidance, and validation throughout the entire solution lifecycle.
• Lead and facilitate Threat Modeling activities, leveraging tools such as IriusRisk to help teams create architecture diagrams, identify security risks, define countermeasures, and validate threat coverage.
• Develop and maintain secure architecture patterns, reference architectures, and application security standards, ensuring alignment with industry frameworks (e.g., NIST, OWASP, CIS).
• Embed security across the SDLC, educating product teams on integrating secure coding practices, secure API design, CI/CD security controls, and automated security testing.
• Support secure integration of third-party platforms, SaaS solutions, and cloud-native services, ensuring vendor risk and architecture risks are understood and mitigated.
• Advise on GenAI, LLM, and AI/ML application security, including data protection, model security, prompt injection mitigation, dependency controls, and risk evaluation of AI-driven components.
• Partner with Cloud Architecture teams to ensure consistent application of cloud security controls, identity and access management (IAM), network segmentation, and zero-trust principles across AWS, Azure, and hybrid environments.
• Drive incident response readiness by contributing to architecture-level threat scenarios and ensuring logging, monitoring, and detection capabilities are properly embedded.
• Monitor emerging security threats, technologies, and regulatory requirements to guide continuous improvement of the organization’s security architecture posture.
• Communicate complex security concepts to both technical and non-technical stakeholders, enabling informed decision-making at all levels.

Requirements

• Bachelor’s degree or equivalent.
• 8+ years of experience in Application Security, Security Architecture, or related technical security roles.
• Deep expertise in Application Security practices, including secure coding, API security, microservices, container/Kubernetes security, DevSecOps, and security scanning tools.
• Proven experience designing secure application and cloud architectures (AWS, Azure). AWS or Azure Architecture certifications are a plus.
• Strong understanding of GenAI / LLM / Agentic AI security, including data governance, retrieval-augmented generation (RAG), model threats, and secure integration patterns.
• Strong knowledge of security frameworks and standards (e.g., OWASP ASVS, SAMM, NIST 800-53, NIST CSF, ISO 27001, CIS Controls).
• Hands-on experience with Threat Modeling methodologies, tools (e.g., IriusRisk, Microsoft Threat Modeling Tool), and risk assessment techniques.
• Knowledge of identity and access management, OAuth2/OIDC, JWT security, secrets management, key management (KMS), and zero-trust design principles.
• Experience with CI/CD pipeline security (GitHub, GitLab, Azure DevOps, Jenkins) and infrastructure-as-code security (Terraform, CloudFormation, ARM).
• Strong understanding of data security, encryption, privacy-by-design, and secure logging and monitoring practices.
• Excellent communication, collaboration, and stakeholder engagement skills, with the ability to influence and drive security adoption.
• Relevant security certifications are a plus: CISSP, CISM, CCSP, CSSLP, CEH, SANS/GIAC certifications, or cloud security certifications.

We Offer

• Competitive salary
• Comprehensive benefits package including Medical, Dental, Vision, Life Insurance, Matched Retirement Savings, Wellness Program, Short-and Long-Term Disability, Charitable Contribution Match, Holidays, Personal Days & Vacation, Paid Volunteer Time Off, and more.

About the Company

ADP is a comprehensive global provider of cloud-based human capital management (HCM) solutions that unite HR, payroll, talent, time, tax, and benefits administration. We are a leader in business outsourcing services, analytics, and compliance expertise. We believe our people make all the difference in cultivating a down-to-earth culture that embraces our core values, welcomes ideas, encourages innovation, and values belonging.

Diversity, Equity, Inclusion & Equal Employment Opportunity at ADP: ADP is committed to an inclusive, diverse, and equitable workplace, and is further committed to providing equal employment opportunities regardless of any protected characteristic including: race, color, genetic information, creed, national origin, religion, sex, affectional or sexual orientation, gender identity or expression, lawful alien status, ancestry, age, marital status, protected veteran status, or disability. Hiring decisions are based upon ADP’s operating needs, and applicant merit including, but not limited to, qualifications, experience, ability, availability, cooperation, and job performance.

Ethics at ADP: ADP has a long, proud history of conducting business with the highest ethical standards and full compliance with all applicable laws. We also expect our people to uphold our values with the highest level of integrity and behave in a manner that fosters an honest and respectful workplace.

Ready to join #ADPLife?

Find my next job