Skip to content

This website works best using cookies which are currently disabled.Cookie policy  Allow cookies
JobServe
 

Job Application

 
 
 

Please answer the following questions in order to process your application.

 
 
Email Address *
 
I certify that I am a U.S. citizen, permanent resident, or a foreign national with authorization to work in the United States. *
 
 
 
File Attachments:
(2MB file maximum. doc, docx, pdf, rtf or txt files only)
 
Attach a Resume * 
 
Optional covering letter 
OR
Clear covering letter
 
 
 * denotes required field
 
 
 
Additional Information:
 
First Name
 
Last Name
 
Address
 
Country
 
Home Telephone
 
Mobile/Cell
 
Availability/Notice
 
Salary Expectation USD
 
Approximately how far are you willing to travel to work (in miles) ?
 
 
 

Key Privacy Information

When you apply for a job, JobServe will collect the information you provide in the application and disclose it to the advertiser of the job.

If the advertiser wishes to contact you they have agreed to use your information following data protection law.

JobServe will keep a copy of the application for 90 days.

More information about our Privacy Policy.

 
 

Job Details

 

Application Security Architect/Manager (Full Time)

Location: Chicago, Illinois Country: United States of America Rate: 150-180K + Bonus
 

Prestigious Fortune 500 Company is currently seeking an Application Security Architect/Manager. Candidate will have a strong background in application security, deep understanding of secure coding practices, code scanning tools, best practices, SDLC, CI/CD pipeline, and DevOps. Candidate will help build this function into a formally recognized service; partnered heavily with development and fully representing the security organization. As a leader, specific lead experience should be present as well analytics, reporting, and analysis of current application portfolio security posture, coding practices, common root cause, cross-training expertise, and distinct knowledge of what constitutes an effective application security program.

Qualifications:

  • Strong Technical Leadership or hands-on management over an Application Security program
  • Strong experience in application development (Java EE, Python, web APIs, C++/C#, .Net, and/or Linux Scripting)
  • Strong experience with Application Security and Application Penetration Testing
  • Strong understanding of a variety of application development architectures, platforms, methodologies, and supporting operating systems
  • Strong understanding of web hosting platforms and web services (AWS preferred).
  • Working knowledge of remediation methods (OWASP Top 10 at a minimum)
  • Understanding of enterprise computing environments, distributed applications, and container technology (Docker preferred)
  • Exceptional interpersonal and communication skills
  • Familiarity or experience with CI/CD
  • Any of the following certifications are desired: GWAPT, GWEB, OSCP, CISSP, CSSLP, or similar advanced security certification

Responsibilities:

  • Conduct tests to evaluate and demonstrate the impact of software misconfiguration and vulnerabilities on in-house applications
  • Model attacker behavior and help teams evaluate their resilience to known attack methodologies
  • Provide expert level security consultation to project teams, application owners, and general technology teams on relevant security controls and Secure-SDLC process requirements
  • Build & Monitor systems that ensure application security policies, coding standards and required security controls are being followed and appropriately mitigating threats
  • Assist with required security education initiatives and foster a security-conscious culture within AppDev teams
  • Develop, Enhance, and Participate, as needed, in security portion of Secure-SDLC
  • Analyze and provide remediation guidance for identified vulnerabilities; validate and verify remediation implementation
  • Participate and lead Information Security projects to expand AppSec capabilities
  • App Security/Pen testing background Application development that progressed to a Security role will be considered, and Cloud and container experience is essential.

Posted Date: 19 Jul 2019 Reference: JSCJ-APPSECLEAD Employment Agency: Request Technology - Craig Johnson Contact: Craig Johnson