This job has expired

Lead Application Security Engineer

Via Resource
Closing date
31 Jan 2022

View more

Technology & New Media
Contract Type
Full Time
You need to sign in or create an account to save a job.
Are you an experienced Cyber Security Engineer with a passion for Application Security? Are you looking to work with a leading retail organisation going through exciting digital transformation programmes? I am currently recruiting for an Application Security Lead for a FTSE100 client to provide expertise and guidance on Application Security working with the wider security team.

Job Responsibilities of the Lead Application Security Engineer

  • Acting as the subject matter expert you will be responsible for supporting and advising on all matters surrounding Application Security
  • Lead and manage a continuously improving Application Security Engineering practice
  • Collaborate with Product Owners and Engineers to build security into all steps of CI/DC SDLC process, from plan through design, build, test, deploy and run
  • Provide security remediation advice and engineering solutions to development and testing teams
  • Help to implement a secure development process advocating the use of OWASP and other application security standards
  • Provide expertise and guidance on common application security flaws and secure coding practices
  • Work with project teams to clearly explain, identify and remediate application security issues
  • Implement a threat modelling programme across the business
  • Promote security awareness and mentor the wider business on Application Security

Desirable Skills and Experience of the Lead Application Security Engineer

  • Previous experience working in an Application Security role
  • Previous software development experience or in-depth knowledge of modern development languages and frameworks
  • Practical experience with Threat Modelling
  • In depth knowledge of Cloud technologies including AWS & Azure
  • Experience working in an environment moving from traditional on-prem technologies to Cloud
  • Experience with application testing tools such as SAST, DAST etc
  • Current understanding of industry trends and emerging threats
  • Excellent communication skills with the ability to successfully negotiate, collaborate or effect change, in relation to Application Security matters with different stakeholders at all levels within the business as well as external partners
  • Security certifications such as OSCP or GIAC are desirable
You need to sign in or create an account to save a job.

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert