Archer Aviation Inc.

Director, Enterprise Application and Cloud Security

Archer Aviation Inc.$248K — $311K *
San Jose, CA 95123In-Person
Information Technology
8 - 10 years of experience
Reposted Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • Bachelor's degree in computer science, Information Security, or related field (or equivalent work experience).
  • 10+ years of experience in Security Engineering or related roles, with 3 years in a lead architect role.
  • Expert-level understanding of Zero Trust Architecture (ZTA) principles.
  • Deep expertise in cloud security architecture (AWS and Azure).
  • Hands-on experience with identity and access management platforms (Okta, Azure AD).
  • Strong knowledge of NIST SP 800-171 and CMMC Level 2 frameworks.
  • Proficiency in threat modeling methodologies.

Responsibilities

  • Design and implement a unified Zero Trust Architecture (ZTA) for security domains.
  • Lead the cloud security infrastructure architecture and design.
  • Establish security control architecture aligned to NIST SP 800-171.
  • Design and oversee identity and access management architecture.
  • Create and maintain security architecture blueprints and reference architectures.
  • Establish DevSecOps architecture and practices.
  • Lead security architecture reviews for major projects.

Benefits

  • A pay-for-performance culture that rewards contributions to business strategy.
  • Mentorship opportunities to lead and develop security engineers.
  • Work with cutting-edge security tools and methodologies.
  • Opportunity to represent the company at industry forums.
  • Engagement in a culture focused on compliance with stringent security standards.
Full Job Description
Archer is seeking a Director, Enterprise Application and Cloud Security to secure the cloud, SaaS, and application ecosystem that supports the company's business and mission. This role combines cloud security, application security, identity architecture, secure development, and enterprise platform governance into a single hands-on engineering position focused on building secure, scalable, and resilient systems.

The position partners closely with infrastructure, IT, engineering, and business application owners to embed security into cloud platforms, internal development workflows, and enterprise applications. Success in this role requires strong technical depth, sound judgment, and the ability to translate security requirements into practical solutions that support the business.

Key Responsibilities
  • Design, implement, and maintain secure cloud architectures -on AWS and Azure, with strong identity controls, least privilege access, and zero-trust principles.
  • Secure Kubernetes and containerized environments, including image scanning, runtime protection, and network segmentation.
  • Lead security review and automated scanning of infrastructure as code templates, including Terraform, CloudFormation, and Helm.
  • Build and improve secure CI/CD practices by integrating cloud and application security tooling into Jenkins, GitLab, GitHub Actions, and Azure DevOps pipelines.
  • Architect and enforce security controls for enterprise SaaS platforms, including Workday, NetSuite, Salesforce, Jira, ServiceNow, and Google Workspace.
  • Implement and manage SaaS Security Posture Management capabilities to identify misconfigurations, risky third-party integrations, and excessive privileges.
  • Design and mature a secure SDLC for internal IT, data, and engineering workflows, including SAST, DAST, IAST, SCA, and secret scanning where appropriate.
  • Strengthen identity and access architecture across cloud and enterprise applications, including Okta, SAML, OIDC, SCIM, phishing-resistant MFA, and lifecycle management of service accounts and API keys.
  • Develop high-fidelity detection logic for cloud and application threats using SIEM and SOAR platforms, and lead incident investigation and response activities.
  • Protect sensitive data, telemetry, and critical business information through encryption, key management, DLP controls, and sound security architecture.
  • Lead technical governance for emerging AI use cases, including controls to reduce shadow AI risk and prevent sensitive data exposure to external LLM platforms.
  • Perform technical assessments of vendors, cloud services, and application providers to reduce supply chain and integration risk.
  • Govern low-code and no-code platforms to prevent unauthorized data flows and insecure automation between business systems.
  • Map security controls to regulatory and industry frameworks, including NIST CSF, NIST SP 800-53, ISO 27001, FedRAMP, DO-326A, ITAR, EAR, NIST 800-171, CMMC, and CUI handling requirements.

Required Qualifications
  • 7+ years of experience in cloud security, application security, DevSecOps, or enterprise security architecture, with meaningful hands-on responsibility in both cloud and enterprise application environments.
  • Strong hands-on expertise with Terraform, Kubernetes, Linux, and modern cloud security engineering practices.
  • Experience implementing and tuning tools such as Wiz, Prisma Cloud, Snyk, Qualys, Tenable, Veracode, Semgrep, Burp Suite, and related security testing or posture management platforms.
  • Strong understanding of CI/CD security integration and modern secure software delivery practices.
  • Proficiency in Python, Go, Bash, or PowerShell for automation, security checks, and custom tooling.
  • Hands-on experience securing enterprise SaaS platforms and implementing identity standards such as OIDC, SAML, and SCIM.
  • Ability to assess technical risk and clearly communicate business impact to technical and executive stakeholders.
  • Working knowledge of frameworks such as NIST CSF, NIST SP 800-53, ISO 27001, and related regulatory or assurance requirements.

Preferred Qualifications
  • Experience in aerospace, defense, or other regulated environments with exposure to DO-326A, ITAR, EAR, CMMC, or CUI requirements.
  • Experience designing zero-trust architectures across cloud and enterprise application environments.
  • Experience with AI security guardrails, enterprise copilots, or internal LLM governance patterns.
  • Certifications such as CISSP, CCSP, AWS Certified Security Specialty, Azure Security Engineer, or CKA.
  • Advanced degree in computer science, cybersecurity, engineering, or a related field.


Successful candidates must be able to demonstrate U.S. citizenship, permanent residency, or status as a protected individual to satisfy ITAR, contractual, and/or regulatory requirements. Please note that this job description is intended to provide a general overview of the position and does not include an exhaustive list of responsibilities and qualifications

At Archer we aim to attract, retain, and motivate talent that possess the skills and leadership necessary to grow our business. We drive a pay-for-performance culture and reward performance that supports the Company's business strategy. For this position we are targeting a base pay between $248,800 - $311,000. Actual compensation offered will be determined by factors such as job-related knowledge, skills, and experience.

About Archer Aviation Inc.

Archer Aviation is an American aerospace manufacturer that develops electric vertical takeoff and landing (eVTOL) aircraft for urban air mobility. The company was founded in 2018 by Brett Adcock and Adam Goldstein. Archer Aviation is developing an eVTOL aircraft that can travel up to 60 miles at speeds of up to 150 mph. The aircraft is designed to be quiet, safe, and efficient, with zero emissions. The company has partnerships with United Airlines and Stellantis, and plans to launch its first aircraft in 2024.
Learn more about Archer Aviation Inc.
Market Cap
$403.1 million
Industry
Aerospace & Defense
NASDAQ
ACHR
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at Archer Aviation Inc.

More Information Technology Jobs

Find similar Director, Enterprise Application and Cloud Security jobs:

NationwideSan Jose, CA