Senior Application Security Specialist
Indexed description
We’re unique too. We were established to find a better way for the global financial community to move value – a reliable, safe and secure approach that the community can trust, completely. We’re always striving to be better and are constantly evolving in an ever-changing landscape, without undermining that trust. Five decades on, our vibrant community reflects the complexity and diversity of the financial ecosystem. We innovate diligently, test exhaustively, then implement fast. In a connected and exciting era, our mission has never been more relevant. Swift now has a presence in 200+ countries and legal territories to serve a community of more than 12,000 banks and financial institutions.
What To Expect
As part of the team, you will drive and/or contribute to key activities such:
- Be the trusted partner of Agile and DevSecOps teams to support and collaborate securing their products from application and/or architecture perspective.
- Provide security requirements aligned with policies and standards and adapted to technologies stacks (Cloud Native, containers, orchestrator, etc).
- Provide security technical assistance during software design, development and operations activities.
- Maintain security standards and guidelines to respond to changes in threats, technology, or best practices.
- Manage and promote usage of security tools in development pipeline and operations.
- Research and assess new threats, vulnerabilities and security alerts and recommend remedial actions.
- Design and implementation of capabilities, processes and/or tools to improve the security in the software delivery life cycle, security automation testing, secure by design activities, etc.
- Identify opportunities for improvements in work processes and innovative approaches to completing scope of work in an efficient way.
- Promote a strong security culture at Swift. We expect you to treat security culture as a brand, take it seriously and recognized that it is hard-fought and easily lost.
- Coach and share knowledge with team members.
- Strong understanding in application security
- Security architecture including threat modelling and risk analysis.
- Security requirements definition based on business needs, classification, threats, and risks.
- Demonstrated experience in secure coding, security testing practices and tools and vulnerability management.
- OWASP top 10.
- SAST, DAST, SCA, API testing and/or containers vulnerability management
- Risk Assessments experience, being able to use advanced security and analytical skills to evaluate security risks, identify and design mitigations to bring risk within appetite.
- Understanding of Agile and DevSecOps principles and how to integrate security into them.
- Typically has 4 to 5 years of relevant work experience.
- Team player, respect diversity.
- Act with business understanding, build and reinforce customer relationship.
- Self-organised, proactive and accountable for delivering results.
- Demonstrate operational excellence. Ability to self-learn and coach others in fast paced complex and technical environment.
- Strong analytical skills.
- Communicate effectively, strong written, verbal and presentation skills, able to adapt communication to diverse audiences
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search