Job Description :
Job Title: Senior Application Security Director
Job Location: Salt Lake City, Utah or Phoenix, AZ (With initial remote)
Job Type: Contract-to-Hire
 
The Senior Application Security Director leads a team that works to provide engineering and product teams with the security expertise necessary to make secure application decisions. The team manages our code vulnerabilities programs including red teaming, manual review, and static and dynamic code analysis. This role will not only require leadership expertise to lead a team but will also require hands-on application security expertise.
 
Essential Functions:
  • Own and execute the vision for Application Security across the company
  • Accountable for the overall implementation of the Application Security Process
  • Serve as a Trusted Partner to educate Development Teams on Security Best Practices.
  • Drive the identification process for identifying security vulnerabilities, designing and executing on remediation plans involving the acquisition, design, test, integration, and implementation of advanced security tools
  • Develop security tools to find or fix security issues. Use both automated and manual testing tools to find and validate vulnerabilities in our applications
  • Drive teams that execute programmatic scans, pen-testing, red/blue/purple teaming, offensive security testing, threat modeling and bug bounty programs
  • Assist development and operational teams in the appropriate application of security best practices and the use of advanced security technologies
  • Internally recognized as highly competent in security areas, will review and participate in benchmarking, installation, upgrade, configuration, deployment and testing activity
  • Investigate innovative approaches to improve software security
  • Working knowledge of Secure SDL
  • Knowledge of SAST and DAST
  • Review and consult on security risks of Mobile, Web, and Cloud stacks
  • Provide executive summary reports of assurance metrics to leadership with a comprehensive inventory of the attack surface, the state of testing and defensive coverage of surfaces, and real-time accounting of open risks within each application
  • Familiarity with industry changes in security standards, information governance, development standards, methods and emerging 3rd party security software in order to advise on security and leverage industry best practice in the design and construction of products
  • Familiarity with regulatory requirements, security certifications, and Security/Privacy Design concepts
  • Create a center of expertise and forum for common application security design and reuse
  • Participate in the definition and documentation of security standards and best practices
Required Qualifications:
  • Demonstrated technical expertise and understanding of modern development, languages, and cloud platforms
  • Minimum of five years' experience managing a SDL (Secure Software Development Life Cycle) that integrates security into all stages of software development process for a large development organization
  • Bachelor's degree in computer science or related discipline, or equivalent work experience
  • Minimum of 10 years' experience in Information/Cyber Security field
  • Minimum of 10 years' experience as a lead engineer or engineering manager or enterprise Tech solutions architect
Preferred Skills & Expertise:
  • Master's degree in business or computer science is highly desired
  • CISM, CISSP, OSCP, CEH preferred
  • Demonstrated mastery of multiple security platform categories
  • Demonstrated knowledge of secure build and configuration standards in a highly regulated environment
  • Excellent communication and interpersonal skills. Including a strong ability to create positive and professional business relationships with partner engineering and architecture teams across Tech
  • Strong commitment to working as a team and providing excellent customer service
About Us:
InterSources Inc, a Certified Diverse Supplier, was founded in 2007, offers innovative solutions to help clients with Digital Transformations across various domains and industries. Our history spans over 13 years and today we are an Award-Winning Global Software Consultancy solving complex problems with technology. We recognize that our employees and our clients are our strengths as the diverse talents and opportunities they bring to the table enables us to grow as a global platform and they are causally linked with our success. We provide strategic and technical advice, and we have expertise in areas covering Artificial Intelligence, Cloud Migration, Custom Software Development, Data Analytics Infrastructure & Cloud Solutions, Cyber Security Services etc.
We make reasonable accommodations for clients and employees and we do not discriminate based on any protected attribute including race, religion, colour, national origin, gender sexual orientation, gender identity, age, marital status.
We also are a Google Cloud partner company. We align strategy with execution and provide secure service solutions by developing and using the latest technologies that thrives our resources to deliver industry-leading capabilities to our clients and customers, making it convenient for our clients to do business with InterSources Inc. Our teams also drive growth by refining technology-driven client experiences that put the users first, providing an unparalleled experience. This results in strengthening the core technologies of clients, enabling them to scale with flexibility, create seamless digital experiences and build lifelong relationships.


Client : InterSources Inc.

             

Similar Jobs you may be interested in ..