Application Security Architect
Irium
- Porto
- Permanente
- Horário completo
- Design and implementation of application security vulnerability management processes (considering the different phases of the application lifecycle)
- Help the product team to design the product with a security-first approach.
- Facilitate the integration of security tools with the development pipeline making them self-service for the engineering teams.
- Support and consult with product and development teams in the area of application security.
- Assist in creation of security training.
- Assist in development of automated security testing to validate that secure coding best practices are being used.
- Strong familiarity with common security libraries, security controls, and common security flaws.
- Web application security principles and have worked hands-on with the OWASP Top 10, the OWASP ASVS or the CWE Top 25.
- Working with a Secure Development Lifecycle model (e.g. OpenSAMM, BSIMM).
- Working within the context of an Information Security framework (e.g. ISO 27001, SOC 2, PCI DSS).
- Experience working with developers.
- Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner.
- Creating and maintaining appropriate documentation.
- English : B2/C1