Application Security Lead

My Dublin based, Financial Services client, based in Dublin is looking for a Applications Security Lead to join their team.

Job Responsibilities

• Helping with the design and implementation concepts and technologies for application security across the organisation, including secure software development lifecycle management, design reviews, tool chains, quality gates and assurance processes;
• Providing information security consulting and liaison with all relevant stakeholders, in particular in the field of application security and secure software development lifecycle;
• Ensuring the effective implementation of Information Security principles and procedures, including those provided by external parties (e.g. Cloud providers) and outsourcing partners;
• Supporting business with threat modelling, software security remediation & scanning support, application security testing and/or threat assessments, perform gap and maturity assessments, participate in security champions programs, assist in driving programs/project agendas to keep business and team mates on track, etc;
• Assessing the effectiveness of security controls; and
• Security Risk Management;

Experience required: 

• Bachelor’s Degree (preferably in computer science), or equivalent professional experience;
• Experience in IT, 6 years+ experience in Information Security related fields and/ or risk management;
• In depth of knowledge working with risk management concepts (e.g. risk and vulnerability ratings, activities in a typical threat-risk assessment, impact/likelihood, etc);
• Experience providing software architecture security guidance, including developing application threat models and methodically protecting against business logic and design flaws that could introduce security vulnerabilities;
• Experience working with Cloud technologies, and DevOps methodology including  (Jenkins, Chef, Git, Docker, Kubernetes, etc);
• Knowledge of IT security technology, processes and architecture and good knowledge of information security management systems;
• Proven track record and experience in developing information security policies and procedures; and
• Proficient in English, excellent international communication skills including the ability to prepare professional documentation for various audiences and senior management.