Application Security Lead
Lead the implementation and management of the application security program, ensuring secure coding practices and embedding security throughout the software development lifecycle at Vocalink Limited.
Role / Responsibilities
* Develop and implement strategies for integrating security assurance into the software development process.
* Establish and execute forward‑looking application security strategies that enable proactive secure application development.
* Collaborate with development teams to conduct security reviews, threat modelling, and code analysis to identify and mitigate security vulnerabilities.
* Provide guidance and training to developers on secure coding practices, security best practices, and common vulnerabilities.
* Advise on the development and maintenance of security standards, policies, and guidelines for application development.
* Lead the Penetration Testing tower of Vulnerability Management; ensure that taxonomies and methodologies reflect the needs of Vocalink and that appropriate testing is carried out.
* Stay updated on emerging threats, vulnerabilities, and industry trends in application security, and ensure that security measures are continuously improved and updated.
* Collaborate during regular security assessments and penetration testing of applications to help resolver groups address security weaknesses.
* Serve as a subject matter expert on application security, providing guidance and recommendations to stakeholders across the organization.
* Work closely with the broader security team to align application security efforts with overall security objectives and initiatives.
* Participate in incident response activities, including investigating and responding to security incidents and breaches related to applications.
All About You
* Proven experience in application security, including hands‑on experience with secure coding practices, code review, and vulnerability assessment tools.
* Strong understanding of software development methodologies, programming languages, and web technologies.
* Experience leading or managing a team of security professionals.
* Excellent communication skills, with the ability to effectively communicate technical concepts to non‑technical stakeholders.
* Strong analytical and problem‑solving skills, with the ability to think critically and creatively to identify and mitigate security risks.
* Ability to work independently and collaboratively in a fast‑paced environment.
* Experience initiating and managing improvement in areas of security by leveraging process metrics.
* Strong understanding of the payments industry regulatory landscape and compliance requirements.
* Ability to articulate themselves clearly and concisely to a broad range of senior and junior stakeholders, acting as a bridge as well as guide for the implementation of new capabilities.
* Excellent communication and leadership skills with the ability to collaborate effectively across departments.
* Ability to motivate, inspire and lead people effectively.
* Team player – leads by example.
* Strategic thinker – able to develop and communicate direction.
* Commercially aware.
* Has a bias to action.
Corporate Security Responsibility
* Abide by Mastercard’s security policies and practices.
* Ensure the confidentiality and integrity of the information being accessed.
* Report any suspected information security violation or breach.
* Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.
#J-18808-Ljbffr