Application security architect (software)

Application Security Architect (Software) – Bentley Systems. Location: Europe-Based (Office/ Hybrid/Home).

• Lead the adoption and evolution of Secure Software Development Lifecycle (SSDLC) practices and standards across teams and projects.
• Conduct security architecture and design reviews to ensure robust protection of applications and systems.
• Drive and mature threat modeling practices across the organization, identifying and mitigating risks early in the development process.
• Collaborate with cross-functional teams to embed security into the design, development, implementation, and verification of software.
• Provide clear, actionable remediation guidance to developers and system administrators.
• Support stakeholders in making informed, risk-based decisions that balance technical and business priorities.
• Deliver training sessions and educational content to upskill developers and promote a security-first mindset.
• Build and maintain tools and automation that enhance security workflows and reduce manual effort.

• Approximately 7+ years of experience in software, with 4+ years focused on Application Security Architecture.
• Strong proficiency in securing cloud environments, ideally with hands-on experience in Azure.
• Proven expertise in threat modeling complex software systems.
• Solid foundation in software development, with the ability to read, write, and audit code across multiple languages.
• Deep understanding of OWASP Top 10, SANS Top 25, and common security vulnerabilities.
• Experience with containerization and orchestration tools such as Kubernetes, Docker, and Istio.
• Ability to deconstruct complex systems to identify potential threats and weaknesses.
• Exceptional communication skills—able to clearly articulate technical risks to developers, engineers, administrators, and leadership.
• Demonstrated ability to learn quickly, research new topics, and adapt to evolving technologies.
• Strong problem-solving skills and a proactive approach to tackling security challenges.
• Ability to make balanced, unbiased decisions that consider both technical risks and business impact.

• Knowledge of OAuth 2.0 / OpenID Connect and modern authentication protocols.
• Familiarity with web technologies including JavaScript, HTML5, HTTP, REST, and related protocols.
• Proficiency in one or more programming languages/platforms such as .NET Core, Node.js, C#, Java, TypeScript, C/C++.
• Certifications such as CISSP or CCSP are a strong plus.

• A great team and culture.
• An exciting career as part of a world-leading software company providing solutions for architecture, engineering, and construction.
• An attractive salary and benefits package.
• A commitment to inclusion, belonging, and colleague wellbeing through global initiatives and resource groups.
• A company dedicated to advancing the world’s infrastructure to improve quality of life, with opportunities to contribute to sustainable, connected, and resilient projects.

Around the world, infrastructure professionals rely on Bentley Systems to design, build, and operate safer, more resilient infrastructure. Founded in 1984, Bentley serves engineering firms and owner-operators worldwide with software spanning multiple disciplines and lifecycle phases. Through our digital twin solutions, we help unlock data value to transform project delivery and asset performance. www.bentley.com

Bentley Systems is proud to be an equal opportunity employer and considers for employment all qualified applicants without regard to race, color, gender/gender identity, sexual orientation, disability, marital status, religion/belief, national origin, caste, age, or any other characteristic protected by local law or unrelated to job qualifications.