Senior Application Security Specialist
OPC NL
University degree in Computer Science, Information Systems, or a related field; or equivalent work experience. Masters degree an asset.
ExperienceTypically has 4 to 5 years of relevant work experience.
What to expect
As part of the team, you will lead and/or contribute to key activities such:
- Identify opportunities for improvements in work processes and innovative approaches to completing scope of work in an efficient way.
- Be the trusted partner of Agile and DevSecOps teams to support and collaborate securing their products from application and/or architecture perspective.
- Provide security requirements aligned with policies and standards and adapted to technologies stacks (Cloud Native, containers, orchestrator, etc.).
- Provide security technical assistance during software design, development and operations activities.
- Maintain security standards and guidelines to respond to changes in threats, technology, or best practices.
- Manage and promote usage of security tools in development pipeline and operations.
- Research and assess new threats, vulnerabilities and security alerts and recommend remedial actions.
- Design and implementation of capabilities, processes and/or tools to improve the security in the software delivery life cycle, security automation testing, secure by design activities, etc.
- Promote a strong security culture at Swift. We expect you to treat security culture as a brand, take it seriously and recognized that it is hard-fought and easily lost.
- Coach and share knowledge with team members.
Professional knowledge and expertise
Strong understanding in Application security
Security Architecture including threat modelling.
Security Requirements definition based on business needs, classification, threats, and risks.
Demonstrated experience in secure coding, security testing practices, tools and vulnerability management.
- OWASP top 10.
- SAST, DAST, SCA, API testing and/or containers vulnerability management
Risk assessments experience, being able to use advanced security and analytical skills to evaluate security risks, identify and design mitigations to bring risk within appetite.
Understanding of Agile and DevSecOps principles and how to integrate security into them.
Other expectations and skills
- Act with business understanding, build and reinforce customer relationship.
- Proactive and accountable for delivering results.
- Demonstrate operational excellence. Ability to self-learn and coach others in fast paced complex and technical environment.
- Planning, coordinate and report on the different activities.
- Strong analytical skills.
- Communicate effectively, strong written, verbal and presentation skills, able to adapt communication to diverse audiences.
- Team player, respect diversity
What we offer
We put you in control of career
We give you a competitive package
We help you perform at your best
We give you the freedom to be yourself
We give you the freedom to be yourself. We are creating an environment of unique individuals – like you – with different perspectives on the financial industry and the world. An environment in which everyone’s voice counts and where you can reach your full potential regardless of age, background, culture, colour, disability, gender, nationality, race, religion, sexual orientation, or veteran/military status.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile APIs Application security Automation Cloud Computer Science DAST DevSecOps OWASP Risk assessment SAST Vulnerabilities Vulnerability management
Perks/benefits: Career development
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.