Applications Security Specialist

SUMMARY:
Applications Security Specialist

POSITION INFO:

• Identify security risks and vulnerabilities, analyse impact thereof and engage relevant stakeholders (e.g. governance bodies and product owners) on relevant security solutions, as well as to drive and monitor the implementation thereof in order to mitigate, remediate security vulnerabilities.
• Provide guidance with regard to the design and implementation of software components in support of building an advanced security posture.
• Proactively broaden knowledge in the area of application security and apply new knowledge and skills.
• Participate in application security audits through the provision of relevant information.
• Participate in information technology (IT) security projects as the application security Subject Matter Expert (SME) ensuring compliance during each stage of the project development life cycle.
• Identify security risks and vulnerabilities, engage relevant stakeholders (e.g. governance bodies and product owners) on relevant security solutions, and drive and monitor the implementation thereof in order to mitigate, remediate security vulnerabilities.
• Respond to, and address security-related audit findings to reduce the clients threat landscape and improve its application security posture.
• Engage with the larger security community to acquire new information and adopt new security capabilities within the clients solution delivery environment.
• Identify and implement opportunities for integration and consolidation, while ensuring the optimal use of security best practice with the development of new solutions.
• Develop and maintain secure system development life cycle (SDLC) procedures and standards based on the clients environment and manage the implementation thereof.
• Manage the Security Major Incident Response Procedures, during a security breach, for the designated business application support area.
• Present periodic reports and analytics pertaining to the security landscape surrounding the designated business applications.

Job requirements To be considered for this position, candidates must be in possession of:

• a Bachelor’s degree in Information Technology or an equivalent qualification;
• certified applications security engineer (CESA);
• certified ethical hacker (CEH); and
• five to eight years’ experience in the SDLC frameworks and solutions of which at least three years must be exposure to overall security governance best practices frameworks and design.

 Additional requirements include:

• additional security certification (will be an added advantage);
• industry, organisational and business awareness;
• IT governance, risk and compliance knowledge and skill;
• continued learning and/or professional development;
• quality assurance knowledge and skill;
• continuous improvement;
• applications support and maintenance skill,
• SDLC design, testing and development skill;
• cybersecurity governance knowledge and skill;
• IT enablement reporting skill; and
• capacity and performance management skill.

** IF YOU HAVE NOT RECEIVED FEEDBACK WITHIN 2 DAYS OF SUBMITTING YOUR CV, PLEASE CONSIDER YOUR APPLICATION UNSUCCESSFUL **

NB! This job is now closed. You can apply for other jobs by uploading your CV.