Application Security Architect

Wipro Digital ,
London, Greater London

Overview

Application Security Architect Location: Sunbury On Thames Experience: 10-18 years Job Description Mandatory: 10 years of experience as a Security architect or equivalent -software engineering architect role Broad and deep understanding of security architecture principles in building applications based on API, micro services, N-tier and SOAP Broad and deep understanding of security architecture principles in building applications using serverless and containerization Broad and deep understanding of security architecture principles across areas such as networks, cloud ,web services, mobile IoT and blockchain Understanding of Public Key Infrastructure and encryption products, services & governance Experience of performing systematic risk assessments Technical Design Authority (TDA) experience covering application and security activities. Hands on threat modeling complex architecture involving cloud, IoT and blockchain Thorough understanding of the Secure software development lifecycle (SDLC) ,knowledge of Agile and DevSecOps Experience in as many of the following languages/frameworks as possible: Java-Spring, NodeJS-JavaScript, Angular ,Typescript, Django-Python, Solidity Demonstrable experience in mobile security concepts (i.e. Secure enclaves, mobile IPC, Sandboxing, Code signing …) Demonstrable experience in mobile and web application vulnerability /security -OWASP top 10 ,SANS 25,mobile OWASP-10,attacks on REST, GraphQL, Microservices etc. Demonstrable experience in Application perimeter defence Previous experience of integrating vulnerability detection and monitoring tools within all stages of the CICD pipelines Experience of developing, securing and operating containers and serverless. Hands on experience in conducting an audit for secure coding Hands on experience in Conduct a minimum of bi weekly validation of security implementations Expertise in a broad array of application security technical controls and processes Excellent attention to detail Desirable Technically proficient with advanced network security and access management solutions Demonstrated ability to identify risks associated with business processes, operations, information security programs and technology projects Experience of security governance (GDPR) Participation in the security community (CTFs, bug bounty, conferences, etc). Up-to-date on the latest industry trends; able to articulate trends and potential clearly and confidently Experience of deploying infrastructure within AWS cloud environment This job was originally posted as www.cwjobs.co.uk/job/89896773