דרושים » הנדסה » Senior Manager, Application Security

משרות על המפה
 
בדיקת קורות חיים
אבחון און ליין
VIP
הפוך ללקוח VIP
רגע, משהו חסר!
נשאר לך להשלים רק עוד פרט אחד:
 
שירות זה פתוח ללקוחות VIP בלבד
AllJObs VIP
 
נאספה מאתר אינטרנט
3 ימים
Location: Or Yehuda
Job Type: Full Time
We are looking for a dynamic, motivated, creative, disciplined, self-starter with excellent interpersonal skills to lead the core application security team under the Chief Information Security Officer. In this role, you will establish and maintain an application security program to support business objectives for Information Security. You will also develop policies concerning the application security program, establish relationships with a Managed Security Service Provider, and more.
What youll do:
Integrate security tools, standards, and processes into the product life cycle (PLC).
Ensure that developers and QA personnel are trained with the appropriate level of security knowledge.
Improve and support application security tool deployments including static analysis and runtime testing tools.
Improve and maintain secure development standards.
Support the incident response and architecture review processes whenever application security expertise is needed.
Manage ongoing penetration testing services, including both expert consulting and managed services.
Provide manual penetration testing and standards gap analysis services to internal business and technology partners.
Manage application framework and perimeter security improvement projects.
Support Vendor Security activities to ensure 3rd‐party software and development meets MH security standards.
Integrate threat modeling practices into the product life cycle.
Provide security requirements for test‐driven design.
Produce metrics reporting the state of application security programs and performance of development teams against requirements.
Requirements:
8 to 15 years relevant experience in application security and software development.
Bachelors degree in computer science or related post-secondary education.
Strong management, communication, problem-solving, and negotiation skills
Excellent communication skills.
Familiarity with agile development processes and have experience integrating secure development practices into both models.
Familiarity with a variety of development and testing tools, including: Eclipse, GIT, GCC, JIRA, Subversion, Maven, ClearQuest/Case, Silk, FindBugs, Checkmarx, IBM AppScan, and HP WebInspect.
Experience writing and testing web applications and web services in the following programming languages: C/C++, Java, and JavaScript.
Experience managing budgets and planning multi‐year roadmaps.
Familiarity with industry standards and regulations including PCI, GDPR, and ISO27001.
Experience developing requirements, creating Sows, selected vendors and managed internal/external penetration testing programs.
Practical experience in the Information Security Architecture field, with emphasis on application security architecture and authorization approaches (role-based access control, direct entitlements-based).
Experience with APIs: REST, SOAP, SOA and other integrations.
Strong understanding of security architecture best practices, standards and frameworks.
Knowledge of cloud-based infrastructures and their specific security characteristics.
Formal training in the primary development toolset: Tools, Code, Application Engine, SQL/DB Security.
 
Hide
5510456
שירות זה פתוח ללקוחות VIP בלבד
עדכון קורות החיים
לפני שליחה