Information Security Architect
$2,000 per monthBambooHR
Information Security Architect
Utah | Remote
At BambooHR, we're all about setting people free to do great work, and we believe AI is a powerful partner in that mission. We're leaning into intelligent tools to streamline our workflows, giving us more time for high-impact innovation. We look for curious, forward-thinking people who are ready to explore how AI can elevate their work and help us reimagine the future of HR.
Essential Job Duties
The Information Security Architect will lead hands-on security architecture design across BambooHR's cloud environment and corporate information systems, partnering with engineering, IT, and security teams to embed security into platforms, processes, and day-to-day technology decisions. A typical day includes leading architecture and design reviews, defining secure cloud and corporate security patterns, advising on identity and data protection strategies, and guiding teams through complex security tradeoffs to enable secure, scalable delivery.
The Information Security Architect will own outcomes across cloud and corporate security architecture, delivering scalable designs, standards, and measurable risk reduction. This role operates with a high degree of autonomy and influence, partnering across engineering, IT, product, and security to embed security into how BambooHR designs, builds, and operates.
You will:
- Lead the design and evolution of security architecture across cloud infrastructure, SaaS platforms, and corporate information systems, ensuring solutions are secure-by-design, scalable, and operationally sustainable.
- Own and maintain security architecture standards, reference architectures, and secure design patterns spanning identity and access management, data protection, logging/telemetry, endpoint security, and third-party integrations.
- Conduct and lead security architecture reviews for new systems, material changes, vendor tools, and integrations; document decisions, required control outcomes, and implementation guidance that teams can execute.
- Drive threat modeling and architectural risk assessments for strategic initiatives; translate findings into prioritized remediation plans and architecture improvements that balance risk reduction with usability and delivery velocity.
- Define and validate cloud security control expectations, including IAM, network segmentation, encryption and key management, secrets management, centralized logging, and least-privilege access models; validate adoption through partnership with engineering and IT.
- Influence detection and response architecture in collaboration with SecOps to improve visibility, telemetry quality, and response effectiveness; support investigations by providing architectural context and remediation guidance as needed.
- Partner with Security Engineering, Application Security, Security Operations, and GRC to ensure security controls are consistently designed and implemented across prevention, detection, response, and governance/audit domains (e.g., SOC 2, ISO 27001, and customer requirements).
- Create clear and accessible architecture documentation (standards, diagrams, patterns, decision records) and communicate security tradeoffs effectively to both technical and non-technical stakeholders.
- Mentor and guide security practitioners and cross-functional partners by improving shared understanding, raising architectural maturity, and promoting consistent adoption of security patterns and secure-by-default approaches.
- Demonstrate an AI-forward mindset and proficiency by actively using AI tools to improve productivity, quality, and decision-making in security architecture and engineering workflows, and be able to speak to real-world examples of using AI to conduct work and to design and implement practical, secure solutions (e.g., accelerating architecture documentation, threat modeling, control validation, detection logic development, policy/standard drafting, or automating analysis).
What You Need to Get the Job Done
- Bachelor's degree in Information Security, Computer Science, Information Systems, or a related field, or equivalent professional experience.
- 6–7+ years of hands-on experience in information security, security engineering, cloud security, or closely related roles.
- Demonstrated experience leading security architecture or design decisions for production cloud and/or corporate environments.
- Strong working knowledge of at least one major cloud platform (AWS, Azure, or GCP), including IAM, networking, encryption, key management, and logging.
- Practical experience across corporate security domains such as identity and access management, endpoint security, SaaS governance, and data protection.
- Ability to independently assess risk, define security control objectives, and translate them into clear architectural guidance and implementation requirements.
- Ability to drive architectural consistency across diverse cloud and corporate systems with varying ownership and constraints.
- Experience balancing security risk reduction with delivery speed, usability, and operational realities.
- Excellent written and verbal communication skills, with the ability to influence and align technical and non-technical stakeholders.
- Strong organizational and prioritization skills; ability to manage multiple initiatives in a fast-paced environment.
- Experience in a SaaS or cloud-first organization.
What Will Make Us REALLY Love You
- Experience supporting SOC 2, ISO 27001, and customer security assessments.
- Familiarity with infrastructure-as-code, CI/CD pipelines, and cloud-native architectures.
- Experience with SSO/IdP platforms, MDM/endpoint management tools, and modern SaaS security controls.
- Security certifications such as AWS Security Specialty, CCSK, SSCP, CISSP (Associate or full), or equivalent.
What You'll Love About Us
- A Great Company Culture that has been recognized by multiple organizations like Inc, and Salt Lake Tribune
- Comprehensive health, life, and disability insurance
- Generous leave policies that include 4 weeks of vacation, 12 company holidays, parental leave, and volunteer time off so you can enjoy quality of life
- 401k plans with up to 6% company match
- $2000 Paid-Paid Vacation bonus
- EAP through Headspace
- Check out all our benefits that benefit you
At BambooHR, we're building something different: we're building a people intelligence platform that transforms HR and sets people free to do great work! We're a proven market leader driving innovation while building lasting success through thoughtful, sustainable growth. Here, you'll find a place that champions growth: both professional and personal, both individual and collective.
We invest in potential, giving you the space to stretch your capabilities and turn good ideas into reality while providing the safety net of a supportive, values-driven culture. Our approach combines meaningful work with meaningful lives, offering competitive benefits, professional development, and the flexibility to thrive both in and outside the office.
What sets us apart isn't just what we do, but how we do it: with openness, integrity, and a shared commitment to doing the right thing. Join us in creating HR software that makes work better for everyone, while we make work better for you.
BambooHR is committed to the full inclusion of all qualified individuals and will ensure that persons with disabilities are provided reasonable accommodations throughout the hiring process. If you would like to request accommodations, please let your recruiter know.
BambooHR is An Equal Opportunity Employer--M/F/D/V Because our team members are trusted to handle sensitive information, we require all candidates that receive and accept employment offers to complete a background check before being hired.
$104.84k - $252.19k
Role Description The Sr. Information Security Architect is a senior member of the Information Security team with leadership responsibilities to design, implement and enforce information security posture and policies. This position provides consulting on information security...SuggestedFull timeWork experience placement- ...IT Architect At Jabil (NYSE: JBL), we are proud to be a trusted partner for the world's top brands, offering... ...Lead and perform architecture security reviews based on relative and applicable information security standards, policies as well as regulatory...SuggestedLocal areaRemote workWorldwide
- ...Title: Information Security Architect Location: NYC NY 10003 On-site/Remote/Hybrid: Hybrid 3 days onsite/2 days remote. Duration: 12 Months Work Hours: 37.5 Hours/Week. Interview Process: 1-2 Rounds NOTE: NEEDS TO BE A LOCAL CANDIDATE ONLY...SuggestedLocal areaRemote work
- ...looking for a Info Security Architect Hybrid in Boston, MA (3 days a week) 2nd round interview is Face to Face... ...work week Notes: . 37.5 Hours a week. hybrid Information Security Architect PREFERENCES INCLUDE: CISSP...SuggestedLocal areaMonday to FridayShift work3 days per week
- ...Information Security Architect Randstad is partnering with a retail firm that is looking for an Information Security Architect. The IT Security organization bears the broad responsibilities of delivering information security, practice governance & assurance, and data...SuggestedWorldwide
- ...Enterprise Information Security Architect Provide technical guidance and renders decisions regarding Security Technology designs and engineering. Act as an advisor to management and technology stakeholders on advanced Security research studies and applications....For subcontractor
$150k - $160k
.... Learn more about American University Department: Information Security Time Type: Full time Job Type: Regular FLSA... ...Description: Summary: The Information Security Architect serves as the university's senior technical security...Full timeWork at officeLocal areaRemote workMonday to FridayNight shiftAfternoon shift- ...Responsibilities Kforce has a client in Scottsdale, AZ that is seeking an Information Security Architect.Duties: Serve as a subject matter expert on security technologies (as listed in the requirements), providing hand-on last-line support as needed, and oversight...Hourly payContract workFlexible hours
- ...Job Title: Information Security Architect Location: Atlanta, GA Duration: Contract Exp: 10+ Year Required Skills: • Perform Threat Analysis & Create/Update the Threat Modelling • The Information Security Architect performs threat analyses for complex...Contract workImmediate start
- ...Information Security Architect, New York, NY We have an opening for an Information Security Architect to join the organization. The Information Security Architect will directly report to the CISO and will play a pivotal role in shaping the firm's security architecture...Temporary workFlexible hours
$99.72k - $149.58k
...Information Security Architect Apply now Job no: 506900 Work type: Full-Time Location: University City - Philadelphia, PA Categories: Drexel University Job Summary Reporting to the Director of IT Security and working closely with...Full timeWork experience placement- ...Information Security Architect Responsible for building a collaborative working relationship with IT Services, Enterprise Application Services, Business Unit application development and information security teams, and others to develop, promote, and implement sound...
$145k - $185k
...We are seeking a highly technical and forward-thinking security architect to help shape the future of enterprise security architecture,... ...security, and secure AI enablement across the organization. The Information Security Architect will help define and engineer secure...Temporary workWork at officeRemote work$83k - $136k
...give our customers insights into our entire portfolio. Security Architect The Security Architect is responsible for designing... ...sexual orientation, national origin, age, disability, genetic information, veteran status, military service, marital status, or any...Permanent employment$118.4k - $174k
...Security Architect Are you ready for what's next? Come explore opportunities within Brunswick, a global marine leader committed to challenging... ...reality: Position Overview: As part of the talented Information Security Engineering team, you will be responsible for...Relocation- ...Responsible for understanding the IS security architecture and ensures that security standards... ...that protect Protected Health Information and Personally Identifiable Information... ...CISSP preferred. Experience: Must be an Architect in this field to be considered. Minimum...
- A technology solutions firm in Washington is seeking an Information System Security Engineer to design and maintain secure systems. The ideal candidate will have 5-8 years of experience in information security, strong knowledge of security engineering principles, and experience...
- SAP sucht einen Compliance-Experten, um ein umfassendes Compliance-Programm für die Delos Cloud-Plattform zu entwickeln und umzusetzen. Die Position erfordert umfassende Kenntnisse in Compliance-Audit-Praktiken und mindestens 5 Jahre Erfahrung in der IT-Governance sowie...
- We are seeking a Senior/Lead Information Security Architect to design secure cloud architectures, perform system threat modeling, and propose effective security controls for critical workloads. The ideal candidate will have strong expertise in AWS cloud security, enterprise...
- A leading defense contractor is searching for an Information Systems Security Manager to enhance the security of communications networks. This role demands expertise in leading risk management processes, reviewing security assessments, and implementing effective security...For contractors
- Jobtailor is seeking an experienced information security professional to lead enterprise security policy development and data protection solutions within a complex environment. You will shape policies, design key management, and support data protection across systems and...
$131.83k - $219.72k
...the universe, and connect the world. Our team is excited to meet you! Job Overview & Responsibilities At ULA, as an Information Security Architect 4 you will support mission‑critical Aerospace & Defense programs by designing, implementing, and sustaining secure...Hourly payPermanent employmentFull timeWork experience placementRelocationFlexible hours- ...Job Description Job Description Job Summary The Senior Information Security Architect is a highly motivated individual with a passion for protecting enterprise information systems. This position will work closely with the CISO and other senior management to understand...Contract workBank staffWork at officeLocal areaImmediate start
- At Houston Methodist, the Information Security Architect position is responsible for designing, building, testing and implementing systems within the Houston Methodist IT network. The Information Security Architect prepares security standards and recommends updates to...Full timeLocal area
- ...Summary: We’re in search of an experienced Information Security Architect with CISSP or CISM or CISA Certifications, FedRAMP, ISO 27001, COBIT NIST experience. Here are some of the specific details: Job Title : Information Security Architect Location...Long term contractFull timeWork experience placementRemote workWorldwide
- ...(Senior) Information Security Architect (f/m/d) Germany Full time Unlimited Immediately The GLS Group CISO Team is responsible for information security worldwide. In your role you will report to the Manager Security Architecture and support...Remote jobFull timeWork experience placementImmediate startWorldwide
$109.3k - $133k
Role Description Wex, Inc. is looking for an Application Security Architect with broad software development and application security experience... .... ~3+ years experience with software security or information security. ~2+ years experience with application and container...Full timeFlexible hoursShift work$143.4k - $189.1k
Role Description WEX, Inc. is seeking a Senior Enterprise AI Security Architect to help define the vision, strategy, and provide technical... ...to build a robust Secure AI ecosystem. We’re the Global Information Security Team at WEX, responsible for implementing and operating...Full timeImmediate startFlexible hours- ...IT Architect Provides technical leadership and is responsible for determining the direction... ...Develop and lead an Application Security domain roadmap and manage related strategy... ...initiatives as it relates to the information security and privacy. Find common ground...Remote work
- ...Job Description Enterprise Security Architect We are seeking an Enterprise Security Architect to define enterprise security standards... ...Requirements ~ Bachelor's degree in Computer Science, Information Security, or a related field. ~7+ years of experience...Shift work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Information Security Architect. Be the first to apply!
- information architect United States
- application security architect United States
- security solutions architect United States
- lead security architect United States
- aws security architect United States
- cyber security architect United States
- cloud security architect United States
- security architect United States
- information security internship United States
- entry level information security analyst United States




