The Application Security Architect plays an integral role in defining and assessing our application development security strategy, architecture and practices. A successful person in this role will effectively translate business objectives and risk management strategies into specific security processes enabled by security technologies and services.
The application security architect will be responsible for the following activities and functions:
Develop and maintain an applications development security strategic plan, roadmap and architecture process in alignment with enterprise policies and
Develop and implement security solutions and capabilities for applications teams that are clearly aligned with business, technology and threat drivers.
Develop and maintain security architecture artifacts (models, templates, controls, standards and procedures) that can be used to leverage security
capabilities in projects and operations.
Conduct or participate in incident response exercises, forensic analysis, penetration testing, disaster recovery planning and business continuity
Advocate and enforce cybersecurity best practices and share insights throughout the organization.
Leading and producing security solutions for organizational and technological projects from the initiating phase to production in aspect of cyber threats
Bachelor's degree in computer science, information systems, cybersecurity or a related field (Master’s degree, preferred) or other accreditation in cyber
security with over 1000 hours accumulative
At least 7 years of experience in a cybersecurity discipline at a senior level.
Direct, hands-on experience managing security infrastructure such as firewalls, IPSs, WAFs, endpoint protection, SIEM and log management technology,
Vulnerability and Bas solutions.
Experience in designing and implementing Customer Data Protection and Credentials management (TLS, PKI, Secrets, etc.) solutions
Verifiable experience reviewing application code for security vulnerabilities and implementing secure coding practices.
Expert understanding of containers, virtualization strategies, public cloud services and identity access management technologies
Advantage : Cissp / Oscp accreditation .