Experienced Application Security Specialist - Levi9
Indexed description
Our Partner
Our partner, ABN AMRO Clearing, is a global leader in the domain of clearing, offering access to a wide range of listed instruments on markets across the globe.
IT is at the heart of their organization with more than 30 different product teams and 10 different platform teams that are trying to build the best products & services for their customers.
Their presence in important financial centers like Amsterdam, Chicago, Sydney, Singapore, Tokyo Hong Kong, London, Sao Paulo, Frankfurt and Iasi, allows them to effectively serve clients worldwide and maintain close proximity to their diverse customer base.
The Role Involves
Cyber criminals are getting smarter. Can you keep our data safe?
The need for information security is growing at a fast pace especially within the banking sector, where there is much to be gained for cyber attackers. In the most recent years, weak security configurations (including password controls) allowed access rights to be circumvented causing breach of data, in addition to insecure or unstable network connectivity causes disruptions, breach of data integrity and confidentiality.
For this reason, our partner is constantly looking at ways to make their applications as safe as possible.
Responsibilities
As an Experienced Application Security Specialist, you will be responsible for performing the following activities:
- Implementation of a secure software development framework, best practices and methodology.
- Building, maintaining and maturing CISO's Application Security Capabilities.
- Assessing and advising DevOps teams to adhere to and comply with the application security processes.
- Cross functional stakeholder management.
- Enforcing security testing in CI/CD pipelines.
- 4-5 years of experience as an Application Security Specialist / Engineer.
- Strong and in-depth knowledge of:
- Security Design Reviews
- Secure Coding Practices
- OWASP Top 10
- Application Security Verification Standard
- SAST/SCA/DAST/Runtime Protection Capabilities
- Container Security
- Enable and automate security in DevOps (DevSecOps).
- Build and execute security awareness program specific to secure software development and application security.
- Familiarity with microservices, serverless and event driven architectures and API security.
- Experience with threat modeling frameworks.
- Experience with containerization solutions: Docker, ECS/Fargate or OpenShift.
- Strong experience with at least one cloud provider (AWS preferred), including IaC tools (CDK, CloudFormation, Terraform).
- Knowledge of secure AI development or ML security patterns.
- Experience contributing to or developing internal security frameworks.
- A keen interest in cyber security and a desire to learn.
- Relevant University degree.
- Excellent verbal and written communication skills in English; able to translate technical topics for non-technical audiences.
- Strong stakeholder management skills across engineering, product, risk, and compliance teams.
- High sense of ownership, engineering instinct, and principled decision-making.
- Strong problem-solving and analytical mindset.
- Continuous learner with curiosity for new threats, tools, and engineering approaches.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search