Please note that this is a contract role providing services to Hilton through Talent Solutions. If you are selected for this role, you will be employed by Talent Solutions and will not be an employee of Hilton. Contract workers are not employees of Hilton or any of its subsidiaries, nor will they be eligible for Hilton benefits.
***This is a hybrid role and would require you to be near one of our three US office locations (McLean, VA; Dallas, TX or Memphis, TN)***
Job Summary
Opportunity to lead security architecture efforts for flagship customer-facing initiatives that impact 230 million global customers, thousands of partners, and employees worldwide. You will serve as a Product and Software Security Subject Matter Expert, integrating with delivery teams to provide detailed consultation and collaboration that ensures software solutions are secure, resilient, and adhere to industry-leading security standards. Your expertise will be instrumental in designing and reviewing product solution architectures, defining security guardrails, and evolving reference architectures for web, mobile, API, property, and payments platforms. This role offers the unique opportunity to shape security strategies for cutting-edge AI-enabled features while partnering with business and technology stakeholders to articulate security design decisions clearly and pragmatically.
Responsibilities
- Lead security architecture efforts for customer-facing initiatives across web, mobile, APIs, property, and payments platforms
- Integrate with delivery teams as a Product and Software Security SME, providing detailed consultation and collaboration
- Design and review product solution architectures to ensure they are secure, scalable, resilient, and align with overarching architecture models
- Define security designs and guardrails that prevent common customer-facing threats such as account takeover, credential stuffing, authorization weaknesses, request tampering, injection-style flaws, abuse/bot activity, and sensitive data exposure
- Own and evolve security reference architectures and standards for customer-facing platforms, including API security, customer identity, and AWS cloud security
- Design and review secure architectures for AI-enabled features across customer-facing platforms, including RAG pipelines, agentic workflows, and Model Context Protocol integrations
- Define guardrails for data ingestion/retrieval, tool permissions, sensitive data handling, output controls, and auditability
- Play a key role in the continuous development, review, and adoption of security standards and best practices
- Actively engage in governance processes related to platform and application security, ensuring compliance with technology standards and regulatory requirements
- Develop, document, and maintain security reference architectures and standards
- Lead security aspects of product delivery by defining secure-by-default patterns and architecture guardrails
- Collaborate with cross-functional teams, including engineering, development, platform, and operations, to ensure security is integrated across the full system lifecycle
- Translate threat scenarios into actionable architecture requirements and reusable patterns
Skills
- Strong background in software engineering, product security, and application security
- Expertise in Customer Identity and Authentication technologies, including OAuth 2.0, OAuth 2.1, OpenID Connect, SAML 2.0, and API Security
- Deep understanding of AWS cloud security, including least-privilege IAM, network segmentation, encryption/key management, secrets management, logging/monitoring strategy, and CI/CD plus IaC guardrails
- Strong cryptography fundamentals and understanding of payment security patterns
- Knowledge of solutions for preventing customer fraud
- Familiarity with industry regulations such as PCI DSS, GDPR, CCPA, NIST 800-53, SOC2, ISO 27001, and PSD2/SCA
- Experience designing secure architectures for AI-enabled features, including RAG pipelines, agentic workflows, and Model Context Protocol integrations
- Ability to define security requirements, architecture patterns, and controls
- Demonstrated experience delivering security architecture solutions
- Ability to partner effectively with business and technology stakeholders
- Strong capability to articulate security design decisions clearly and pragmatically
- Excellent communication, presentation, and interpersonal skills
Experience
- 7 years of professional work experience in Technology or related field
- 3 years of software development or enterprise architecture experience
- 5 years of combined work experience in Product Security, Enterprise Architecture, Customer Identity and Access Management, Cloud Security, Cryptography, AI Security, and/or Payments Security
- 2 years as a senior security architect and 5 years of professional work experience in Technology or security field (preferred)
- 3 or more years of strong software engineering and/or software development experience (preferred)
- One or more cyber industry certifications such as CISSP, AWS Solution Architect (Associate level or Professional level), or AWS Security Specialty certification (preferred)
- Experience in the hospitality industry (preferred)
This is a hybrid role requiring proximity to one of three US office locations: McLean, Dallas, or Memphis. This position presents an opportunity to make a meaningful impact on the security posture of customer-facing platforms that serve millions of users globally. You will work at the forefront of security innovation, shaping architectures for emerging technologies including AI-enabled features, while collaborating with talented cross-functional teams in a dynamic and forward-thinking environment. Your contributions will directly influence the security, resilience, and trustworthiness of solutions that touch customers, partners, and employees worldwide.
