Application Security Architect

Overview

Hybrid
$140,000 - $80,000
Full Time

Skills

CISSP
JavaScript
Python
Java
Vulnerability Management
Mitigation

Job Details

Application Security Architect

New York, NY -Onsite 2 days a week

Permanent, direct hire position

140000.00-180000.00 base plus bonuse, 401k and amazing benefits

No corp to corp or 3rd party agencies

We are seeking an Application Security Professional to join our client's team of professionals!

In this position, you will:

Responsibilities:

  • Perform Application Security scans (e.g. DAST and SCA) on applications and APIs to identify security vulnerabilities and weaknesses.
  • Triage security findings and collaborate with development teams to prioritize and remediate identified vulnerabilities.
  • Drive threat modelling as a standard part of the SDLC, and develop and maintain threat models for critical applications, identifying potential security risks and proposing mitigations.
  • Drive the Security Champions program, and define and promote secure coding practices, patterns, and standards across development teams.
  • Conduct security reviews and provide guidance on security requirements for new features and projects.
  • Assist in the analysis, selection and rollout of new application security tools, processes, and standards.
  • Stay up to date with the latest security threats, vulnerabilities, and industry best practices.

Requirements:

  • Proven experience in application security with a focus on application security testing and vulnerability management.
  • Hands-on experience with Application Security tools.
  • Strong understanding of common application vulnerabilities (e.g., OWASP Top 10) and mitigation techniques.
  • Experience with threat modelling methodologies and tools.
  • Proficiency in at least one programming language (e.g., Java, Python, JavaScript).
  • Excellent communication and collaboration skills, with the ability to work effectively in cross-functional teams.
  • Strong understanding of risk management.

Professional qualifications/certifications

  • Degree in technology discipline (Computer Science, Information Management, Computer Engineering, Cybersecurity or equivalent).
  • Relevant security certifications (e.g., CISSP, CEH, CSSLP) or equivalent is preferred.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.