Job Description

Established Application Security Architect with at least 10 years within the broader IT Security disciplines and technologies.

• At least 7-8 years Application Security architectures and solutions and digital transformation programs.
• Experience with developing requirements and models for the future-state, current state and gaps.
• Strong knowledge of API security standards and technologies
• Experience in digital transformation enablement standards and technologies, such as DevSecOps, microservices, or cloud-native applications and architectures.
• Experience in conducting application threat modelling exercises to identify potential security threats and develop appropriate security controls.
• In-depth knowledge of web application security vulnerabilities, such as OWASP Top 10, and experience with secure coding practices and solutions (DAST, penetration testing, WAF’s).
• Experience with application security tools and technologies, such as web application firewalls (WAFs), static and dynamic code analysis tools, and penetration testing, secret and certificate management
• Experience with compliance standards and regulations
• Ability to review and assess applications for security vulnerabilities and provide recommendations for mitigation strategies.
• Strong understanding of security architecture principles, including defence in depth, least privilege, and secure by design
• Knowledge of established information security frameworks and standards (i.e. NIST, ISO2700, CSA, SCF) and their application into diverse environments.

Qualifications

These duties are too complex and specialized to be performable with a bachelor’s degree related to computer science or computer information systems or information technology.

Additional Information

All your information will be kept confidential according to EEO guidelines.