Senior Application Security Engineer.

Location: #London, United Kingdom.
Salary: Competitive.
Employer: Holland and Barrett.

Responsibilities:
• Security Strategy: Help define and execute the Holland & Barrett application security strategy. Collaborate with both tech and non-tech teams to integrate security principles into the early stages of product design and development;
• Secure SLDC: Establish a secure Software Development Lifecycle (SDLC) that enables development teams to deliver high-quality applications quickly while implementing essential controls for software integrity, authenticity, and third-party library management;
• Risk Assessments: Conduct risk assessments, threat modeling, and architecture reviews alongside development teams, producing artifacts to drive the implementation of effective security controls;
• Standards Development: Own the creation and maintenance of tailored security standards and guidelines, developing reusable resources for various development teams;
• Team Support: Provide guidance and support to development teams on secure software production practices and flaw mitigation strategies.

Requirements:
• 5+ years of experience in application security, with at least 3+ years in software development;
• Strong understanding of application security concepts, including secure coding practices, threat modeling, vulnerability management, and access control mechanisms;
• Experience with AWS, Kubernetes, Service Mesh, and API Security (including authentication and authorization);
• Proficiency in programming languages such as Python, Java, JavaScript, GoLang, and Rust;
• Familiarity with Agile methodologies like SCRUM, along with proven project management skills to oversee multiple security projects simultaneously.

Apply.

#Офис #AppSec