Application Security Specialist - World First UK and EMEA - London
World First is a market-leading, award-winning, bank-beating, rapidly-growing, fun-loving international payments company and we are looking to hire an Application Security Specialist.
We win lots of awards – a few recent ones include #7 on the The Sunday Times HSBC International Track 200, The Queen’s Award 2016, Ruban D’honneur for the European Business Awards for Customer Focus and the UK Customer Experience Awards.
Our growth has also placed us on the FinTech 50 and the Investec Hot 100.
Basically, we are a company that is going places!
The role:
Data is at the heart of World First.
Maintaining the Confidentiality, Integrity and Availability of that data is paramount to ensure World First’s continued success as well as ensuring customers can trust us to keep their data and money safe. As we grow in size, we realise we need to adapt, and as a result the Security team is growing too.
In this new role, reporting to the Information Security Officer, you will be working closely with the IT Development teams to ensure Application Security is considered throughout the SDLC. You are required to guide, assist and train developers to think about Security at all stages and develop best in class code.
As an Application Security Specialist you will be responsible for:
Creation, maintenance and updating of the SDLC to ensure Security processes and ‘stage’ gates are clearly defined and communicated
Educate teams to deliver secure code and applications. Including identifying skills and tools gaps, which can assist in the effective and efficient development of secure code
Static and dynamic security testing including code scanning, vulnerability assessments and managing 3rd parties to perform and analyse penetration tests
Ensure the Secure coding framework is adhered to and developed against
Create and continuously update dashboards and real-time reporting of application security related metrics
Conducti Threat assessments and reviewing and advising on application architecture and designs
Acting as security evangelist to the development team
Identifying and building a team of Security champions within the development teams; ensuring that they take ownership of Security within their own teams
You need:
Proven previous experience in a similar role
Experience in programming languages PHP and JAVA
Demonstrable experience of building and managing ‘Security Champions’
Demonstrable experience of working with OWASP Secure coding frameworks and awareness of OWASP top 10 Security vulnerabilities
Ability to effectively communicate Security risks and impact to various business stakeholders
Hands on experience of performing ethical hacking and vulnerability assessments
Having a certification such as CEH would be beneficial
Working with SAST tools such as Checkmarx, Veracode or Fortify
Demonstrable experience of working in an agile development environment
Good understanding of newly emerging IT technologies and architectures in a corporate environment
In return we’ll give you:
A competitive salary: up to £70,000 per annum, commensurate with experience
An excellent benefits package including annual discretionary bonus, company pension scheme and health cover
World Perks: season ticket loan, free breakfast, childcare vouchers, Friday drinks fridge, business casual dress code, corporate discounts, tri-annual company parties – and more!
0 comments:
Post a Comment