Application Security Architect

Responsibilities

• Secure SDLC Integration: Partner with engineering and platform leadership to embed security practices throughout the development lifecycle. Influence and evolve the AppSec tooling and automation roadmap-including emerging AI-assisted capabilities-through prototyping, evaluation, and feedback.
• Code & Application Reviews: Perform deep, targeted reviews of high‑risk code paths, APIs, authentication/authorization flows, and sensitive components. Coordinate with Penetration Testers, Red Teams, and Compliance teams to ensure holistic coverage.
• Automation & Tooling: Build and maintain security automation integrated into CI/CD pipelines. Automate detection, validation, and developer‑friendly remediation workflows to improve signal quality and reduce friction.
• Developer Guidance & Training: Serve as a domain expert and partner to engineering teams. Deliver workshops, provide secure coding guidance, and help teams adopt effective security controls and testing practices.
• Cloud Application Security: Advise on application‑layer security in cloud-native environments, including identity, secrets management, network exposure, and service‑to‑service authentication.
• IoT Device & Platform Security: Provide security guidance for IoT devices and platform components, including OSS dependency risk analysis and security considerations for legacy or constrained devices.
• Security Policy & Compliance: Translate policy and compliance requirements into practical guidance for developers. Contribute to policy evolution and support audit activities as needed.
• Incident Response: Collaborate with InfoSec during security incidents and investigations. Maintain and evolve runbooks and contribute to post‑incident reviews to drive systemic improvements.
• Required Skills & Experience
• 10+ years of experience in application security, software engineering, or related technical security roles (8+ acceptable for exceptionally strong candidates).
• Bachelor's in Computer Science, Computer Engineering, Electrical Engineering, or related field, or equivalent work experience
• Proficiency in at least one programming language (e.g., Python, JavaScript, C#) and ability to navigate large, complex codebases.
• Knowledge of application security best practices across both cloud and on‑prem environments, including cloud‑hosted Kubernetes and related cloud services.
• Hands‑on experience with AppSec tooling and techniques (SAST, DAST, SCA, IAST, WAF, etc.).
• Strong understanding of vulnerabilities, exploitability, and security principles (e.g., OWASP Top 10, secure design pat

Additional Information

Do you love diving deep into complex systems? Are you passionate about helping engineering teams ship secure, high‑quality software? Do you get energy from solving practical security problems at scale and partnering closely with developers, architects, and product teams? If so, we'd love to talk to you. Alarm.com is looking for an Application Security Architect to join our growing security organization-initially as the primary owner of application security, with the opportunity to help shape and potentially build the AppSec function over time. You'll play a hands‑on, influential role in shaping how we build secure software across a diverse ecosystem-including mobile apps, cloud services, on‑prem systems, IoT devices, and emerging AI‑powered features. You'll collaborate with engineers across the company, participate in design reviews, lead threat modeling, and help teams adopt secure development practices that keep our customers and partners safe. Alarm.com offers an environment where you can meaningfully impact both technology and culture. You'll work with smart, friendly engineers, cutting‑edge products, and a platform that spans everything from home automation to large‑scale data processing. If you enjoy a blend of deep technical work, cross‑team partnership, and practical security engineering, this could be the perfect place to grow your career.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at alarmcom? Share your experience