Job Responsibilities
* Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure
* Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture
* Automate security testing and deployment processes to ensure rapid and secure delivery of software
* Assessing Risk around the SDLC. Responsible for Risk assessments.
* Integrate Application Security Tools within existing Development Processes
* Assist with the Planning & Execution of Application Penetration Tests
* Serve as a Subject Matter Expert (SME) in the field of Application Security
Skills Required
* Strong experience in software development and security, key responsibility to "Wrap security around Products".
* Proficient in scripting languages such as PowerShell, YAML, JASON, etc.
* Experience in software security design review
* Strong knowledge of development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001
* Experience with Azure cloud infrastructure, particularly Azure PaaS service
* Experience being client-facing and presenting with excellent communication skills.
Remote working with infrequent office travel - 2-3 days in the office per month.