Security Architect - Remote US

SitusAMC is where the best and most passionate people come to transform our client’s businesses and their own careers. Whether you’re a real estate veteran, a passionate technologist, or looking to get your start, join us as we work together to realize opportunities for everyone, we proudly serve.

At SitusAMC, we are looking to match your unique experience with one of our amazing careers, so that we can help you realize your potential and career growth within the Real Estate Industry. If you are someone who can be yourself, advocate for others, stay nimble, dream big, own every outcome, and think global but act local – come join our team!

This role will support the design, implementation, and continuous improvement of security architecture across AWS and Microsoft Azure environments, enterprise applications, and infrastructure platforms. This role will focus on improving cloud security posture, hardening identity and privilege models, integrating security into SDLC pipelines, and reducing attack surface across infrastructure and applications.

Essential Job Functions:

• Support the implementation of secure architecture patterns across AWS and Microsoft Azure environments
• Support deployment and operationalization of CNAPP/CSPM platform
• Drive cloud security posture improvements by integrating CNAPP with Cloud-native tools (e.g., GuardDuty, Security Hub, IAM, KMS, CloudTrail) and Azure security capabilities
• Partner with Security Operations to automate and integrate with MSSP and SOAR autmation response principles
• Partner with engineering and development teams to embed application security (AppSec) controls into development and deployment pipelines
• Lead and support vulnerability management and patching programs across infrastructure and applications
• Contribute to security architecture reviews, threat modeling, and design validation
• Support implementation and optimization of IAM, PAM, and least-privilege access models
• Collaborate with SecOps team to integrate telemetry into SIEM platforms for monitoring and detection
• Support in the development and maintainance of secure configuration baselines and reference architectures
• Help drive patching strategy for servers, endpoints, and cloud workloads
• Conduct architecture reviews and document security requirements
• Partner directly with engineering leaders to bake security into product roadmaps.
• Stay up-to-date with the latest security trends, threats, and technologies to continuously improve our security posture.
• Help drive a culture of zero trust security across engineering, development, and product teams.

Qualifications/ Requirements:

• Bachelor’s degree in a technical field from an accredited college/university, or equivalent job experience.
• Minimum of 6+ years of industry and/or relevant experience, typically with 1+ years in a Senior Associate level role or external equivalent.
• Experience in cybersecurity, cloud security, or security engineering, including demonstrated experience operating at a senior or lead level.
• Relevant certifications such as CISSP, CEH, GIAC, ISSAP or other relevant security-focused certifications preferred.
• Hands-on experience securing AWS and/or Azure environments.
• Working knowledge of CNAPP/CSPM platforms
• Experience with vulnerability scanning, remediation tracking, and patch management processes
• Familiarity with application security principles (SAST, DAST, secure SDLC, threat modeling)
• Experience with IAM, PAM, and access governance concepts
• Exposure to SIEM and security monitoring integration
• Knowledge of Zero Trust architecture principles
• Understanding of network segmentation, VPN, Conditional Access, and cloud networking fundamentals
• Proficiency in scripting and automation (e.g., Python, PowerShell, Terraform)
• Familiarity with container security technologies (Docker, Kubernetes) and infrastructure as code (IaC) tooling
• Knowledge of encryption and key management practices.
• Strong communication skills and ability to work with both technical and non-technical stakeholders.
• Highly motivated self-starter that can manage multiple deliverables independently in a fast-paced environment

#LI-AS1 #LI-REMOTE

Note: This job description is not intended to be all inclusive or exclusive. At any time, employees may perform other related duties as required to meet the ongoing needs of the organization and participate in additional trainings. SitusAMC does not accept unsolicited resumes from staffing agencies, search firms or any third parties. Any unsolicited resume submitted to SitusAMC in any manner will be considered SitusAMC property, and SitusAMC will not pay a fee for any placement resulting from the receipt of an unsolicited resume.

The annual full time base salary range for this role is

$115,000.00 - $135,000.00

Specific compensation is determined through interviews and a review of relevant education, experience, training, skills, geographic location and alignment with market data. Additionally, certain positions may be eligible to receive a discretionary bonus as determined by bonus program guidelines, position eligibility and SitusAMC Senior Management approval. SitusAMC offers PTO and paid holidays, the terms of which are set forth in the program policies. All full time employees also are eligible to participate in various benefit plans, including medical, dental, vision, life, disability insurance and 401K; in each case in accordance with the terms of the applicable plans.

Pay Transparency Nondiscrimination Provision

SitusAMC is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.

Know Your Rights, Workplace Discrimination is Illegal