Principal Application Security Architect - LPL Financial

Key Responsibilities

• Architect and oversee secure API development across cloud and on‑prem platforms, ensuring compliance with industry standards and regulatory requirements.
• Conduct threat modeling, risk assessments, and security reviews for new and existing applications, providing actionable recommendations.
• Collaborate with engineering, DevOps, and product teams to embed security controls into the CI/CD pipeline and secure coding practices.
• Lead security architecture workshops, mentor staff, and promote a culture of security awareness throughout the organization.
• Evaluate and recommend security tools, frameworks, and technologies to enhance API protection and incident response capabilities.

Requirements

• 10+ years of experience in application security, with a focus on API security and cloud environments.
• Deep expertise in AWS security services, secure design principles, and threat modeling techniques.
• Strong knowledge of secure coding practices, OWASP Top 10, and industry compliance frameworks (e.g., PCI, SOC 2).
• Excellent communication skills, able to translate complex security concepts to technical and non‑technical stakeholders.
• Proven track record of leading security architecture initiatives in a large, regulated organization.