Product Security Architect

Job Description

BeyondTrust is a place where you can bring your purpose to life through the work that you do, creating a safer world through our cybersecurity SaaS portfolio.

Our culture of flexibility, trust, and continual learning means you will be recognized for your growth, and for the impact you make on our success. You will be surrounded by people who challenge, support, and inspire you to be the best version of yourself.

The Role

We’re hiring a Product Security Architect to join a team that operates AI-first. We don’t mean we’re planning to adopt AI or “exploring” it; we mean Claude and LLM-driven workflows are how we do threat modeling, secure design reviews, vulnerability analysis, and developer enablement today. This role is for someone who can walk in and operate at that level from day one, then help us push further.

You’ll work across BeyondTrust’s product suite, including endpoint agents, thick clients, SaaS platforms, APIs, identity systems, and cloud-native services, partnering directly with engineering, architecture, and product management to find and eliminate architectural risk before it ships.

What You’ll Do

• Threat Modeling & Attack Surface Reduction Lead threat modeling, attack surface analysis, and secure design reviews across products, platform services, endpoint agents, and cloud-native systems. The goal isn’t producing threat model documents but recommending architectural decisions that eliminate unnecessary exposure and working with engineering to change them.
• AI-Native Security Engineering Use LLM platforms (Claude, OpenAI) as core tools to scale threat analysis, abuse-case generation, architecture review, and remediation guidance. Build and refine prompts, plugins, skills, and agent workflows that make the team faster and more consistent. You’ll be extending an existing AI-first practice, not building one from scratch.
• Engineering Partnership Work directly with engineering teams to embed secure-by-default patterns into product development. This means being present in design reviews, proposing concrete alternatives when you identify risk, and building self-service security capabilities (playbooks, reusable patterns, automated workflows) that let engineers make secure decisions without waiting on us.
• Standards & Knowledge Own and expand the Product Security handbook that inferences product context from multiple sources and leverage it for enforcing secure design standards, architecture guidance, and engineering best practices. The handbook is a living system that feeds our AI workflows, not a static wiki nobody reads.
• Mentorship Mentor Product Security Engineers and Security Champions on secure design, attack surface reduction, and AI-first security workflows. Help engineers across the org develop a security-focused mindset, not just follow checklists.
• Strategy Help evolve BeyondTrust’s AI-first Product Security Architecture strategy by identifying where AI workflows can replace manual processes, where they need human oversight, and where the next capability gaps are.

What You’ll Bring

• 7+ years in Product Security, Application Security, Security Architecture, or Software Security Engineering
• Deep, practical experience with threat modeling, attack surface analysis, secure design reviews, and architecture risk analysis at scale, not just in theory
• Strong understanding of cloud-native systems, APIs, endpoint agents, thick clients, and identity/security platforms
• Hands-on experience using LLM platforms (Claude, OpenAI, or similar) in engineering or security workflows. We’ll ask you how you’ve used them and what you’ve learned about where they work and where they don’t
• Ability to influence engineering and product teams. You should not have a mindset to block releases but to be persuasive, credible, and practical
• Builder mindset, you’ve created scalable security workflows, frameworks, or enablement programs, not just consumed them
• Experience building AI-native security workflows, plugins, agents, or developer tooling
• Background in securing endpoint technologies, identity systems, or enterprise security platforms
• Offensive security experience or adversarial testing background, understanding how attackers think sharpens everything else
• Cloud security experience across AWS, Azure, or Kubernetes environments

How We’ll Measure Success

• Measurable reduction in product attack surface and recurring architecture risks and not findings produced, but risk eliminated.
• Increased scale and consistency of secure design reviews through AI-first workflows
• Faster identification and remediation of design-level and architecture-level risks
• Engineering teams actively using self-service security capabilities you’ve built
• Expansion of AI-first Product Security Architecture capabilities across the SDLC

Better Together

Diversity. Inclusion. They’re more than just words for us. They are the guiding values of how we build our teams, cultivate leaders, and create a culture where people feel connected.

We take care of our employees so they can take care of our customers. Customers who come from all walks of life just like us. We hire incredible people from diverse backgrounds because when we are different together, we are stronger together.

About Us

BeyondTrust is the global identity security leader protecting Paths to Privilege™. Our identity-centric approach goes beyond securing privileges and access, empowering organizations with the most effective solution to manage the entire identity attack surface and neutralize threats, whether from external attacks or insiders.

BeyondTrust is leading the charge in transforming identity security to prevent breaches and limit the blast radius of attacks, while creating a superior customer experience and operational efficiencies. We are trusted by 20,000 customers, including 75 of the Fortune 100, and our global ecosystem of partners.

Learn more at www.beyondtrust.com.

#LI-BS1