Build your ambition with us. We’re looking for pioneers ready to reimagine what’s possible and lead with bold, transformative ideas. If you’re driven by innovation and eager to shape the future of technology, this is where you belong. Amrize IT is seeking an Application Security Architect to join the IT Security team. This role will focus on embedding security into the Software Development Lifecycle (SDLC) across custom-built, SaaS, and multi-cloud applications (AWS, GCP), leading secure design practices and reducing application and API security risks through technical guidance and governance. What you will do: Lead security reviews, threat modeling, and secure architecture design for applications and APIs in cloud environments Define and enforce secure design patterns for cloud-native services, including IAM and network controls Integrate security tools (SAST, DAST, SCA) into CI/CD pipelines to support a shift-left security approach Establish security controls within code repositories to protect code integrity and prevent vulnerabilities Translate security frameworks (NIST, ISO 27001, SOX) into actionable requirements for development teams Partner with teams to assess vulnerabilities and drive risk-based remediation aligned with OWASP standards Qualifications: Bachelor’s degree in Computer Science, Information Security, or a related field Experience in Application Security, Secure Software Development, or Product Security (7+ years) Strong knowledge of web and API security (HTTP/S, REST, OAuth, SAML) Experience with cloud security in AWS and/or GCP and DevOps/CI/CD environments Relevant certifications such as CSSLP, CISSP, CCSP, or AWS Security Specialty English proficiency (B2 or higher) #J-18808-Ljbffr