Established Application Security Architect with at least 10 years within the broader IT Security disciplines and technologies.
At least 5-7 years Application Security architectures and solutions and digital transformation programs.
Experience with developing requirements and models for the future-state, current state and gaps.
Strong knowledge of API security standards and technologies
Experience in digital transformation enablement standards and technologies, such as DevSecOps, microservices, or cloud-native applications and architectures.
Experience in conducting application threat modelling exercises to identify potential security threats and develop appropriate security controls.
In-depth knowledge of web application security vulnerabilities, such as OWASP Top 10, and experience with secure coding practices and solutions (DAST, penetration testing, WAF’s).
Experience with application security tools and technologies, such as web application firewalls (WAFs), static and dynamic code analysis tools, and penetration testing, secret and certificate management
Experience with compliance standards and regulations
Ability to review and assess applications for security vulnerabilities and provide recommendations for mitigation strategies.
Strong understanding of security architecture principles, including defence in depth, least privilege, and secure by design
Knowledge of established information security frameworks and standards (i.e. NIST, ISO2700, CSA, SCF) and their application into diverse environments.
Never miss an opportunity! Create an alert based on the job you applied for.
