Head of Application Security

Remote work, Netherlands

Posted:11 days ago
Location:Remote work, Netherlands
Job Ref:BH-33702
Job Type:Contract
Expiry date:11/29/2022
Contact:Alex Englander
Contact Email:alex.englander@source-technology.com
This role is Fully remote

Available for both Perm and Freelance (outside of IR35)

Competitive rates/Salary

About you:
  • know your security tools and approaches: you should be leading our way when setting up SAST, DAST, fuzzing, property-based testing, symbolic execution, network simulation tools and such;
  • have exposure to cryptography, decentralized networking, hardware key management solutions;
  • Leverage existing technology and products to embed security checks for vulnerabilities in the CI/CD pipelines
  • ultimately making sure that development (and DevOps) teams write secure code by design, by default and in deployment.
  • Application threat modeling
  • Work closely with Product, R&D, and DevOps teams to define high-level and detailed security requirements for various features.
  • Build, maintain, and improve AppSec processes & tools.
  • Work with R&D teams to review code for security vulnerabilities (manual and automated)
  • Perform periodic application level penetration tests on major features and versions.

Cybersecurity solutions
  • Research, design and advocate new technologies, architectures, and cybersecurity products that will support cybersecurity requirements for the enterprise and its customers, business partners and vendors.
  • Interface with multiple Business Groups to develop and support innovative cybersecurity solutions to minimize risk and streamline business processes, including in manufacturing environment.
  • Partner with Engineering teams and Product Security teams to offer cybersecurity services for product development and customer applications.
  • Evaluate, implement, test and maintain cybersecurity solutions, based on approved security architectures.
  • Consult with IT and security staff to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications and software.
  • Define cybersecurity architectures and standards, and support the review and update of cybersecurity policies and procedures.
  • Respond to audit, penetration tests and vulnerability assessments.
  • Drive tenders and evaluations to select the most appropriate services, products and vendors, and establish mutually acceptable contracts and service-level agreements.
  • Positive attitude and aptitude to learn
  • Proactive mindset with a bias to action. Anticipate issues and suggest judicious solutions, prompt to act, and drive results for the group
  • Highly organized and ability to drive successful completion of projects related to the group's business processes
  • A highly collaborative and persuasive style. Outstanding listening abilities with strong interpersonal skills
  • Strong verbal and written communication skills coupled with expert knowledge of the Microsoft Office suite
  • Bachelor's degree in Computer Science, Management Information Systems, Information Systems, or a related field/experience
  • Subject matter expert on technology risk management & understanding of security assessments and DevSecOps designs.

Apply now