pl

en

Application Security Governance Officer

Stanowisko: Application Security Governance Officer

Miejsce pracy: 100% remote

Data dodania: 30.05.2023

DCG is a modern technology company, gathering in its ranks IT related professionals. Due to the continuous development and the large number of recruitment projects that we carry out for our Partners, we are looking for a person for the position:

Application Security Governance Officer

Responsibilities:

  • Setting the requirements and high-level goals for application security area
  • Tailoring and maintaining the application security management framework including legacy and modern SDLC/DevSecOps areas
  • Supporting implementation of the SDLC and DevSecOps 
  • Supervising vulnerability management process for the application area
  • Cooperating with IT delivery units to improve application security posture
  • Responsible to define process measurements and develop measurement system for application vulnerabilities
  • Contributing to reporting function and its execution within application security creation, implementation and risk mitigation processes
  • Cooperating with core departments and external suppliers to strengthen application security area

 

Requirements:

  • Proven leadership for activities implementing and maintaining application security governance and management system and related controls in the medium/high sized organizations and projects
  • Good understanding of the IT security challenges in the current and future state of large enterprises to prepare the organization with the right processes, skills, relationships, and capabilities against growing IT security risks
  • Ability to establish and maintain good relations with your internal and external stakeholders will be essential to succeed in this role
  • Knowledge of application security framework implementation, SDLC/DevSecOps implementation, SAST/DAST/SCA scan engines implementation, vulnerability management, risk assessment, exemption handling, stakeholders management
  • Knowledge of modern application security area concepts like cloud security, container security, api security, IaaS code security, modern IAM concepts like zero trust model or OAuth2/OIDC, etc.
  • Experience in implementation of the cloud related controls in application security area
  • Proven knowledge of one or more well-known cyber-security frameworks (like ISF, NIST, SCF, ISO 27x, OWASP, etc.)
  • 10+ years experience in IT Operations, Security & Development

 

Offer:

  • Private medical care
  • Trainings & Learning opportunities
  • Ability to work 100% remotely
Aplikuj online

Przed wyslaniem CV/dokumentów aplikacyjnych, uprzejmie prosimy kandydatów o zapoznanie się z klauzulą informacyjną.

Po zapoznaniu się z klauzulą informacyjną podaną przez Administratora Danych dobrowolnie wyrażam zgodę na przetwarzanie przez Ogłoszeniodawcę moich danych osobowych, zawartych w mojej ofercie pracy, dla potrzeb procesu tej rekrutacji oraz dla realizacji przyszłych projektów rekrutacyjnych.

Agencja doradztwa personalnego (nr licencji 4642)

powrót do listy ofert

Dane spółki: Diverse CG Sp. z o.o. Sp.k., ul. Towarowa 28, 00-839 Warszawa                                                     

REGON: 141316780

NIP: 5222877930

KRS: 0000733458
Obserwuj nas:
UE