Application Security Architect
* Day Rate: Excellent Day Rate/Above Market Rate (disclosed on application)
* IR35 Status: Inside IR35
* Contract Length: 6 months initial (expected to extend multiple times)
* Hybrid Model: 3 days per week in office, 2 days remote
* Office Location: Central London
* Job Level: Senior
* Industry/Sector: Financial Services (experience essential)
About the Client and Role:
My client, a highly prestigious, globally renowned name in financial services is seeking a vastly experienced Application Security Architect to join the in-house security team on an initial 6-month (but fully expected to extend many times) basis.
The Application Security Architect will be responsible for translating the group-wide information and cyber security strategy and requirement into secure-by-design Application security architecture throughout the organisation. The Architect will work closely with the Security and DevOps teams, reviewing large bodies of code (Java and C++), creating secure design patterns and security roadmaps to be processed and implemented by the team.
Key Responsibilities:
* Develop reference patterns for security architecture
* Design effective application security solutions aligned to the Information Security and business strategy.
* Act as Subject Matter Expert for Application threat modelling, secure coding practices in Java and C++, and DevSecOps practices.
* Contribute to the security technology roadmap, policies and standards.
* Support development teams in implementing threat modelling, secure development practices and use of application security assurance tools.
* Ensuring that architecture and solution designs are secure by design
* Developing Application based security policies and standards
Experience Required:
* Strong professional background in Financial Services
* Outstanding understanding of Application Security
* Strong experience developing patterns for application security architecture
* Subject Matter Expertise in application threat modelling
* Strong understanding of secure coding practices in Java and C++, and DevSecOps practices
* Experience of automated build and deployment pipelines
* Experience of operating one or more of SAST, SCA, DAST, IAST, MAST
* Relevant qualifications or certifications
To be considered, please ensure you complete your application on the Computappoint website.
Services offered by Computappoint Limited are those of an Employment Business and/or Employment Agency in relation to this vacancy.