Senior Applications Security Lead
Location: 100% Remote
Looking for a SME that is a heavy Application Security person and can help build a practice. You will have come up through development then got into security. You will haveheavy security web development, CI/CD, Cloud, Java, Python, Static code PEN testing, AWS Containers. You will lead and drive virtual meetings
- The Application Security Leader is responsible for the analysis, evaluation, and execution of an ideal application security offering that integrates development activities, information security, and the automated release methods within the CI/CD pipeline. The Application Security Leader serves as the foremost security representative who partners with our development teams, leaders, and product lines to provide consultative guidance, insight, and feedback as new technologies or products are explored. This role will serve as the application security SME and indirectly lead a virtual team of Security Champions throughout the development organization.
- As the focal person for Application Security, the individual will have robust training, experience, and background in both Information Security and the Application Development lifecycles / approaches / languages / and tools. Previous experience in defining organization-wide processes and methodologies, a proven leadership/influence style, customer-service oriented demeanor, problem solving, effective reporting via metrics and indicators, and strong communications are all essential to this function. Additional insights, experience or background in any of the following are also of great value: NIST, ISO27001, Data Protection, Java Development, Static Code Analysis, Dynamic Code Analysis, PEN Testing, AWS, Containers, MicroServices, CI/CD Pipeline, Agile, Sprints / Scrum Masters, GitHub, Black Duck, WhiteHat, Veracode, Jira, Docker, Kotlin, cloud security and design, people leadership, process maturity, and other related focuses.