Application & Platform Security Architect [Remote]
AbbVie Inc.
- Remote job
Company Description
About AbbVie
AbbVie's mission is to discover and deliver innovative medicines and solutions that solve serious health issues today and address the medical challenges of tomorrow. We strive to have a remarkable impact on people's lives across several key therapeutic areas including immunology, oncology, and neuroscience - and products and services in our Allergan Aesthetics portfolio. For more information about AbbVie, please visit us at . Follow @abbvie on LinkedIn, Facebook , Instagram , X and YouTube.
Job Description
The Application & Platform Security Architect i s a member of the Information Security team and works closely with other members of the team to develop and implement a comprehensive information security program. This includes defining security policies, processes, and standards. We are seeking a highly skilled architect to collaborate with application development teams, ensuring secure design, coding, configuration, and deployment of technology solutions. The architect will not only focus on common security mechanisms like encryption and authentication but will also dive into application-level risks, session management, securing configuration files, and risk identification in system configurations. This role requires a deep understanding of secure application development practices, including the security of API interactions and cloud application environments.
Responsibilities:
- Define reusable security architecture patterns and guardrails to enable consistent, secure implementation across high-risk business applications.
- Drive secure-by-design initiatives by integrating security considerations early in the software architecture lifecycle and influencing enterprise architecture direction.
- Represent security architecture in design authority boards and technical review councils, advocating for risk-based security controls.
- Work with in-business IT customers, including application architects and engineers to evaluate application software and infrastructure designs, for the purpose of defining/designing application controls aligned with enterprise standards.
- Define application-specific security control architectures and produce design artifacts to guide secure implementation of business-critical systems.
- Develop re-usable implementation guidance and design patterns based on previous engagements to scale the service.
- Work with information security leadership to develop strategies and plans to enforce security requirements and address identified risks in the infrastructure and applications.
- Act as a security architecture liaison to IT delivery and engineering teams, embedding security principles into technical delivery and architecture review forums.
- Support security aspects of business & IT initiatives by assisting in architecture, design, implementation, deployment, and operational transition of innovative & secure technology solutions.
- Work with information security leadership to develop strategies and plans to enforce security requirements and address identified risks in the infrastructure.
- Research, evaluate, design, test, recommend and plan the implementation of new or updated information security technologies.
- Establish collaborative working relations with the Information Technology functions to ensure that solutions align with security architecture and business strategy.
- Play an advisory role in application development or acquisition projects to assess security requirements and controls and to ensure that security controls are implemented as planned. Complete remediation activities and initiate actions to ensure that compliance and security gaps are successfully addressed.
- Research and assess new information security threats and recommend remedial actions.
- Foster an information security culture through education, skill development, and implementation of effective information security processes and practices.
- Understand and adhere to corporate standards regarding applicable Corporate and Divisional Policies, including code of conduct, safety, GxP compliance, data security, and the software development lifecycle.
- Matures and leverages relationships with affiliates, subsidiaries, vendors, and industry peers in accordance with AbbVie Values, Vendor Management Office, and Purchasing to further the mission, vision, and goals of the organization.
- Design the security architecture for applications, ensuring all components meet best practices and regulatory compliance.
- Work closely with software development, DevOps, and operations teams to integrate security into the software development lifecycle (SDLC).
- Lead efforts in identifying potential threats through application threat modeling and propose design changes to mitigate risks.
Qualifications
Required:
- Bachelor’s degree and 9 years of experience OR Master’s Degree and 8 years of experience OR PhD and 4 years of experience in information security and/or related functions (IT Audit, Risk Management or Security Architecture).
- Must have demonstrated exceptional ability to assess and communicate information security concepts and practices, with both business and IT stakeholders.
- Requires in-depth knowledge of the systems development life cycle, client area’s functions and systems, and systems applications programs development technological alternatives.
- Proven implementation of creative technology solutions that advance the business.
- Relevant work experience is important for successful performance of this role due to the complexity of our global IT Security environment.
- Strong understanding of application security principles, including OWASP Top 10, SANS/CWE Top 25, and secure coding practices.
- Expertise in secure session management, token handling, and authentication mechanisms (OAuth, SAML, OpenID Connect).
- Knowledge of cryptographic practices, encryption protocols, and PKI management.
- Experience with containerization (Docker, Kubernetes) and cloud platforms (AWS, Azure, GCP).
- Familiarity with tools for code analysis (e.g., SonarQube, Veracode) and vulnerability scanning (e.g., Burp Suite, Nessus).
- Understanding of DevSecOps practices, including securing CI/CD pipelines.
- Self-starter with the ability to work independently and manage multiple projects simultaneously.
- Strong problem-solving and analytical skills with the ability to identify security risks and propose effective solutions.
- Ability to work collaboratively in cross-functional teams and influence technical teams towards secure implementations.
- Understanding of cloud computing principles, including virtualization, containerization, microservices, and serverless computing; Risk Management, container security, Kubernetes security, IAM security, network security, auditing, encryption, secrets management and data protection, securing CI/CD.
- Advanced knowledge of Identity Security concepts, least-privilege, separation of duties, and Zero trust design principles.
- Understanding of federation technologies (WS-Fed, OAuth, OpenID connect, SAML …) and of encryption technologies (encryption types and protocols/standards).
- Knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project.
- Significant SOX and HIPAA experience in dealing with IT general controls (ITGC), demonstrated through hands-on audit, remediation, and/or computer system validation.
- Excellent understanding of current Information Security & Architecture trends and their impact on business strategies including key Information Security vendors and solutions, audit organizations, and influential market research firms.
- Excellent communications and influencing skills with strong ability to balance differing stakeholder interests through sound analysis and persuasion.
- Strong people skills, collaborative ability to work with IT stakeholders inside and outside of the organization, able to mentor team members with diverse backgrounds.
- Thorough understanding of Information Security frameworks and good practices (e.g., ISO, NIST), and proven ability to strike a balance between an academic and pragmatic approach.
Preferred:
- Information security qualifications such as CISSP are preferred but not required.
- Understanding the following concepts is a plus; identity management, federated identity services, incident management, access control, application vulnerability testing, public key infrastructure, Windows, and Unix/Linux, public cloud infrastructure, and services.
Additional Information
Applicable only to applicants applying to a position in any location with pay disclosure requirements under state or local law:
The compensation range described below is the range of possible base pay compensation that the Company believes in good faith it will pay for this role at the time of this posting based on the job grade for this position. Individual compensation paid within this range will depend on many factors including geographic location, and we may ultimately pay more or less than the posted range. This range may be modified in the future.
We offer a comprehensive package of benefits including paid time off (vacation, holidays, sick), medical/dental/vision insurance and 401(k) to eligible employees.
This job is eligible to participate in our long-term incentive programs.
Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, incentive, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company's sole and absolute discretion unless and until paid and may be modified at the Company’s sole and absolute discretion, consistent with applicable law.
AbbVie is an equal opportunity employer and is committed to operating with integrity, driving innovation, transforming lives and serving our community. Equal Opportunity Employer/Veterans/Disabled.
US & Puerto Rico only - to learn more, visit
US & Puerto Rico applicants seeking a reasonable accommodation, click here to learn more:
- ...Greenlight is looking for a Senior Staff Product Security Engineer to define technical vision and security standards across its platform. This senior role influences strategy,... ...security experience and be experts in application security. The position is based in Atlanta...PlatformApplicationFlexible hours
$184k - $230k
...Datavant is the data collaboration platform trusted for healthcare.... ...the world's health data secure, accessible and actionable,... ...As a Sr Product Security Architect at Datavant, you will play a... ...across Datavant's portfolio of applications, ensuring that security is embedded...PlatformApplicationRemote work- ...AI Security Architect Pinnacle Financial Partners is seeking a pioneering AI Security Architect... ..., and monitoring pipelines for AI platforms, including prompt injection defenses,... ...teams to align AI security practices with applicable regulations (FFIEC, OCC, GLBA, SOX)...PlatformApplication
$163.9k - $235.55k
...Principal AI Security Architect At UKG, the work you do matters. The code you ship, the decisions... ...days with our workforce operating platform. Helping people get paid, grow in... ...Principal AI Security Architect to join UKG's Application Security Architecture team. This is a...PlatformApplicationWork experience placement- ...Product Security Technical Leader As a technical leader of Product... ...teams with respect to application, cloud, and product security... ...years in a security engineer/architect role. ~ Extensive experience... ...) in multiple languages, platforms, and frameworks, including Java...PlatformApplication
$185k
...The Security Architect is a key member of the Hertz Global Information Security & Compliance organization... ...security and reduce risks, where applicable. Validates security configurations... ...range of enterprise common security platforms, endpoint security, vulnerability...PlatformApplicationWorldwideFlexible hours- ...an opportunity for "Senior Lead Cloud Security Architect ___ Atlanta, GA - Onsite" and I am looking... ...and delivery teams to ensure the application of smooth, efficient and scalable release... ...in Python, Java, .NET, and cloud platforms (AWS, GCP, Azure). • Familiarity with...PlatformApplicationContract workImmediate start
- ...Senior AWS Security Architect As a Senior AWS Security Architect, you will be responsible for... ...to ensure the security of applications, data, and infrastructure. Leverage... ...the table enable us to grow as a global platform and they are causally linked with our...PlatformApplication
$218.4k - $365.2k
...Overview of the Role: As a Cloud Security Architect, you will drive the security-related efforts... ...understanding of public cloud platforms with a primary focus on GCP and foundational... ...a reasonable accommodation during the application or the recruiting process, please...PlatformApplication- ...Company is seeking an experienced Data Security Architect to lead the design and implementation... ...Compliance, Infrastructure, Cloud, and Application teams to integrate security... ...Experience with Microsoft Purview, DSPM platforms, Insider Risk Management, Information...PlatformApplicationFull time
- Physical Security Solutions Architect The Physical Security Solutions Architect is a critical hands-on... ..., and visitor management platforms. The architect will create and maintain... ...physical security systems and enterprise applications (Workday HRIS, SailPoint identity governance...PlatformApplicationTemporary workFor contractorsLocal areaRemote work
- ...Job Description: At Regions, the Cyber Security Architect contributes to the advancement of... ...closely with Enterprise Architecture and Application Development groups to enhance the security... ...stakeholders across customer‑facing platforms and corporate functions, and who bring...PlatformApplicationFull timeWork at officeRelocationVisa sponsorshipWork visaRelocation packageFlexible hours3 days per week
- ...is seeking an experienced Senior Cloud Security Architect to design secure cloud solutions and... ...Architecture in the areas of Cloud and Application Security, in partnership with the Cybersecurity... ..., and integrate security into cloud platforms and delivery processes at scale....PlatformApplicationWork at office
$170.6k - $390k
...grow your career in information security! The opportunity The Senior Network Security Architect is a strategic and hands‑on... ...with infrastructure, cloud, application, and security operations teams... ...Experience with SASE / SSE platforms Automation and Infrastructure...PlatformApplicationSummer holidayRemote workFlexible hours- Sr. Cloud Security Architect | CNAPP/CSPM/Presales (Remote) We are looking for a former hands-on... ..., and position leading security platforms such as Wiz, Sysdig, Orca, and other CNAPP... ...reasonable accommodation to complete the application process or participate in an interview...PlatformApplicationRemote jobFull timeLocal area
$89.7k - $260.2k
...Tax - Americas Tax Technology Group - Security Architect - Senior Manager Location: Dallas, Nashville... ...controls embedded within engineering, platform, and operational workflows. Your key... ...cloud infrastructure, identity, application, and workload environments. Drive continuous...PlatformApplicationWork experience placementSummer holidayFlexible hours- ...Security Architect - Atlanta, GA - Hybrid - US CITIZENS OR GC HOLDERS ONLY! A growing, nationally recognized law firm is looking for a Security... ...Azure environments, ensuring all infrastructure and application plans meet enterprise standards. Zero Trust Leadership: Integrate...ApplicationWork at office
$130k - $160k
...is noticed and valued every day. IT Security Architect Role Summary Conduent is... ..., infrastructure, cloud, and security platforms. The IT Security Architect defines... ...Equal Opportunity Employer and considers applicants for all positions without regard to race...PlatformRemote workWork from homeFlexible hours- ...Role: Enterprise Architect Duration: Full Time... ...architecting solutions for platform or products developed in an... ...large-scale system design, security, data aggregation, user interface... ...current and future solutions, applications, technologies and establish...PlatformApplicationFull time
$200k - $275k
...Security Architect King & Spalding is a leading global law firm with a commitment to excellence, innovation, and the seamless delivery... ...solutions that protect our organization's infrastructure, applications, and data. The ideal candidate will have expertise in cloud...ApplicationFull timeWork at officeLocal areaWorldwideFlexible hours$114.48k - $170.07k
...winning culture? Start your Voyage - Apply Now The AI Security Architect role will be a key delivery role for VOYA Financial... ...as well as the line-of-business (LOB) or business unit (BU) applications, specializing in artificial intelligence. The AI Security Architect...ApplicationPart timeWork experience placementLocal areaRemote workFlexible hours$114k - $142k
...you ready to help us make the future? We are seeking a Cyber Security Architect/Engineer II – Active Directory/IAM to join our team. In... ...managing the daily operations of our Privilege Identity (PI) applications and monitoring the daily operations of our SIEM services that...ApplicationPermanent employmentTemporary workWork experience placementRemote workFlexible hours- ...Administrator will be expected to have a broad knowledge of server applications running in a distributed Linux environment. The Senior... ...product. Knowledge of Apache Web Server, Linux OS, and J2EE platforms such as WebLogic, JBoss, Tomcat, or WebSphere is a must. Familiarity...PlatformApplication
- ...Principal Enterprise Architect Department: Technology & Infrastructure... ...-premises infrastructure and applications to AWS while ensuring architectural coherence, security, scalability, and alignment... ...phased lift-and-shift, re-platforming, and re-architecture plans....PlatformApplicationFull timeShift work
- ...visibility across infrastructure, systems, and applications. Develop dashboards, alerts, and... ..., virtual environments, and cloud platforms (AWS, Azure, GCP). Support monitoring... ...Service Now. Exposure to AWS Solution Architect Professional Certification. Skills...PlatformApplication
- ...Job Title: Information Security Architect Location: Atlanta, GA Duration: Contract Exp: 10+ Year Required Skills: •... ...Security Architect creates the initial Threat Modelling (with new applications/systems) or updates an existing Threat Modelling (with...ApplicationContract workImmediate start
- ...supervision, coordinates, designs, and secures computer databases to store, track, and... ...visibility across infrastructure, systems, and applications. Develop dashboards, alerts, and health... ..., virtual environments, and cloud platforms (AWS, Azure, GCP). Support monitoring...PlatformApplicationRemote work
- ...are seeking a highly skilled? ServiceNow Architect (Contractor)'to design, implement, and... ...systems. This role combines? strategic platform architecture? with? hands-on... ...configuration, and implementation? of ServiceNow applications and custom solutions, focusing on ITSM,...PlatformApplicationFor contractorsLocal area
- ...SSRS Reporting servers Required 5 Years Setting up new Kofax platforms (Kofax Capture 9.x, 10.xand KTM 5.x and 6.x) of Total Agility... ...Years System analysis, design and development in ASP.net applications, IIS and Kofax (KC, KCIC, KTM and KCNS) and IBM Content...PlatformApplication
- ...other team members' work to assure the application has sound analysis, programming and design... ...must have extensive experience in architecting Java solutions and integration of disparate... ...to-end application delivery in a multi-platform environment (mainframe, client server,...PlatformApplicationContract work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Application & Platform Security Architect [Remote]. Be the first to apply!
- .net software architects (remote) Atlanta, GA
- remote software architect Atlanta, GA
- application architect Atlanta, GA
- senior software architect Atlanta, GA
- software architect Atlanta, GA
- cloud security architect Atlanta, GA
- security architect Atlanta, GA
- aws security architect Atlanta, GA
- cyber security architect Atlanta, GA
- senior application security Atlanta, GA

