Application Security Architect - 6 Month Contract - £750pd - London - London

750 - Information Security
Ref: 1293 Date Posted: Wednesday 14 Apr 2021
LinkedIn ShareShare

Application Security Architect - 6 Month Contract - London 

Our client who is a leading Organisation within the financial industry is seeking an Application Security Consultant with relevant software security engineering experience working for financial market infrastructure or financial services providers such as payment processors.

The role will be tasked with ensuring that the quality of systems and software delivered is consistent with the inherent security threat and risk profile of a global exchange group designated as critical national infrastructure. The ideal candidate will operate and mature the software security delivery function that integrates with the SDLC.

Responsibilities Include:

  • Security design consultancy and guidance
  • Support and develop the security champions in the development teams
  • Develop and maintain application threat models
  • Provide security assurance, code scanning, design walkthroughs, black and white box testing
  • Act as the subject matter expert on software security and DevSecops practices.
  • Support the software security assurance tooling when by developers and integrated into automated pipelines by DevOps teams;
  • Develop security functional and non-functional requirements.
  • Complete High Level and Low-Level Designs 
  • Support engineering colleagues to deliver secure configurations for technology implemented
  • Contribute to technology roadmaps and product evaluation

The suitable candidate will have the following relevant skills and experience 

  • In-depth knowledge of the Secure Software/System Delivery Lifecycle (SDL)
  • Subject Matter Expertise in areas such as threat modelling, secure coding practices in Java and C++ languages, application security, Cloud, DevSecOps.
  • An excellent understanding of the following areas or technologies would be of benefit:
    • Project delivery methodologies
    • Modern application and infrastructure security design patterns
    • Secure coding practices and threat modelling
    • Application security principles and development frameworks such as OWASP, OpenSAMM and BSIMM
    • Integrated Development Environments and tooling
    • Continuous Integration/Continuous Deployment Tools and Processes
    • Penetration, vulnerability testing, code assurance tools and techniques
    • Scripting and automation tool

To be considered, please ensure you complete your application on the Computappoint website.

Services offered by Computappoint Limited are those of an Employment Business and/or Employment Agency in relation to this vacancy.