Position Overview:
Manage the application security aspects of all the client’s properties across the N-tier architecture of the system. Specializes in application security on .Net, iOS and Android platforms. Should also understand the security aspects from a database perspective.
Key Areas of Responsibilities:
- Analyze the application security gaps identified via Pen test, Code Review and assess the application risk
- Prioritize the issues and provide solution towards resolution
- Perform code reviews to determine potential security vulnerabilities
- Define application security standards and include into projects as part of Non-Functional Requirements
- Ensure governance of those standards
- Evaluate security products, patches for possible adoption
- Define security metrics based rate applications based on security
- Identify application vulnerabilities via security testing
- Work with Enterprise and Application Architecture teams to drive alignment around more pragmatic vs. prescriptive solutions
- Monitor and vet major architectural decisions, changes, and open issues (e.g. data placement, tool/technology product selection, interfaces, new data stores, infrastructure issues)
Bonus:
- Knowledge of client systems
· Experienced with iOS and Android
- Knowledge of mobile apps development on multiple OS platforms (iOS, Android, Windows, Blackberry)
- Knowledge of IT-DCX applications and processes.
Education, Experience and Technical Skills:
· Bachelor's degree in computer science or equivalent
· Experience in defining and successfully improving web application security and mobile applications security with a variety of technologies, protocols, languages, techniques and design structures, including knowledge of Microsoft .net, HTML5, AJAX, XML, CSS3, jQuery, ReactJS
· Understanding of security techniques and web server structures including Geographically Distributed Applications, Databases, SOAP/REST/JSON
· Must have thorough understanding of development processes including agile development methodologies, must understand and leverage Global Delivery Model
Essential Skills/Competencies:
· .Net Architecture
· Web security / Mobile Security
· Communication and Negotiation skills
· Strong Leadership and organizational abilities
· Excellent synthesis and analysis capacity
· Demonstrated ability to deliver complex, multi-platform solutions