Application Security Solution Architect
A fantastic opportunity has arisen for a Solution Architect with a strong AppSec/DevSecOps background and with long standing security experience to join our client’s dynamic and rapidly expanding Network & Security Consultancy Practice. The successful candidate will report directly to the Practice Manager, joining an already healthy sized team that is expanding due to pipeline demands.
Our client is a leading independent provider of IT infrastructure services. They work at the heart of digitisation, advising organisations on IT strategy, implementing the most appropriate technology and managing their customers’ infrastructures.
It is a company where people matter. They are diverse, flexible and open and are family friendly, supportive and offer flexible and home working. They are looking for professionals with diverse competencies, personalities and strengths who want to live their shared value of teamwork and performance.
Interested in joining a company with a strong sense of community? They are growing. They encourage. They empower. They support.
Leading consultancy security engagements on all topics related to Application Security
Responsible for building, maintaining and enhancing Consultancy delivery capability for Application Security, in support of the Line of Business point services and solution strategy.
Develop and maintain an active and engaged technical community across the whole Practice in support of the Application Security technical portfolio.
Engaged to provide opportunity-specific Technical Assurance, Quality Assurance, Governance & Customer Satisfaction of pre and post sales consultancy engagements. Hands-on evaluation of emerging technologies.
Participation in/supporting application security reviews and threat modelling, including code review and dynamic testing.
You will have a strong AppSec/DevSecOps background with long standing security experience, with relevant accreditations from vendors
Enterprise wide security architecture for on-prem and cloud-based application security solutions such as Cisco, DataDog, SonarQube, VeraCode and MicroFocus
Delivery of Threat Modelling workshops
Experience with OWASP, static/dynamic analysis, and common security tools.
Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner.
Experience identifying security issues through code review.
Experience in OT and or SCADA would be beneficial
Desirable Technology / Vendor Experience
Cisco Secure Workload
Micofocus Cyberes Fortify
Certified Application Security Engineer (CASE)
Certified Application Security Specialist (CASS)
Certified Secure Software Lifecycle Professional (CSSLP)
GIAC Certified Web Application Defender (GWEB)