Lead Application Security Specialist

£56,600 to £105,100 dependent on experience
25 Sep 2017
03 Nov 2017
Contract Type
Full Time
Lead Application Security Specialist NorwichLondon Job ID: R-53354 Full time Pay family: Information Technology Salary: Salary circa £56,600 to £105,100 dependent on experience Role Description Working within the CISO department as part of the Security Consultancy & Design team, the Lead Application Security Specialist will be working with internal and external stakeholders (both IT and non-IT areas). The main focus of this role is to manage and contribute towards the delivery of both technical and non-technical change initiatives lead by both business and internally within CISO; the role will involve engagement with stakeholders from across all areas of the Aviva business and its suppliers globally. You will be able to demonstrate strong skills in leadership, influencing, and applications security risk management in either a previous Information Security operational or governance role, preferably in a Financial Services organisation. This role will require some travel to Aviva offices globally. The Lead Application Security Specialist will: - Lead the application security team, developing the global AppSec Centre of Excelence. - Define an annual plan for end to end systems review and oversight its execution. - Develop, embed and oversee secure development lifecycle practices globally. - Develop and maintain the secure coding and testing standards an guidelines. Experience / Knowledge: - CISSP or CISM qualified. - Experience in Information Security, ideally in the Financial Services sector. - Possess in-depth knowledge of information security governance processes and practices, including ISMS monitoring and control frameworks such as, ISO, ISF and COBIT, their relationships to other frameworks and their application within a financial services environment or other highly regulated industry. - Have a good understanding of Secure Development Lifecycles and their application in an agile environment. - Good understanding of security architecture principles and processes. - Good knowledge of IT Operations procedures and best practices. - Experience in managing de-centralized teams. Additionally experience in Penetration testing tolls and technologies, Security Testing / Scanning toolsets such as Checkmarx / IBM Appscan and development tools and technologies including Microsoft Legacy and .Net, Java and J2EE, Apple IOS, Android would be of a huge advantage but not essential. Additional Information Benefits include: - Salary circa £56,600 to £105,100 dependent on experience. - 29 days' holiday plus bank holidays. - Competitive on target performance bonus. - Up to 14% Company contribution to your pension. - Aviva flexible benefits. - Employee discounts. - Season ticket loan. - Share scheme. Bring to Aviva what makes you different and we'll support you to do the best work of your life. We encourage applications from everyone who wants to help us achieve our purpose of helping our customers to Defy Uncertainty. One of Aviva's core values is Care More, and this is brought to life through the flexible ways we like to work. This may include working from home some of the time, or flexible work schedules to accommodate parent and carer responsibilities, further studies and hobbies.
This job was originally posted as www.jobsite.co.uk/job/959143186