Senior Information Security Specialist
Main Responsibilities
* Provide technical support to team leads and mentor junior members.
* Lead project processes to ensure information security aspects are considered throughout the lifecycle.
* Contribute to and utilize our security testing methodologies, creating and updating technical documentation as necessary.
* Conduct manual and automated source code reviews.
* Liaise with software development teams to ensure security is integrated throughout the lifecycle.
* Identify and manage security flaws in software through collaboration with external bodies.
* Perform risk assessments, threat modeling, and design reviews to ensure effective security controls.
* Identify opportunities for automating manual tasks and recommend tooling to support such automation.
About this Role
This Senior Information Security Specialist will focus on the technical aspects of IT security, specifically application security and code analysis. The role involves ensuring applications are built securely and compliant with regulatory obligations.
The position requires collaboration with software development teams to understand and mitigate application-based vulnerabilities. A strong understanding of Secure Software Development Lifecycles and code assessment is essential.
This role is part of a broader Information Security department that utilizes enterprise and bespoke tooling to identify and mitigate threats. It offers hybrid working arrangements and a collaborative environment.
Key Skills and Qualifications
* Excellent understanding of automated, dynamic, and static application security testing tools.
* Manual security testing experience to find vulnerabilities and logical issues.
* Knowledge of OWASP and its utilization in threat modeling.
* Experience in software development and languages.
* Working knowledge of CI/CD pipelines and associated security tooling.
* Structured methodologies for conducting and reporting on Web Application Penetration Testing.
* Strong documentation and communication skills.
Benefits and Opportunities
This role offers a range of benefits and opportunities, including:
* A collaborative work environment with a talented team of engineers and analysts.
* Hybrid working arrangements to balance work and personal life.
* Ongoing training and professional development opportunities.
* The chance to work on challenging projects and contribute to the growth and success of the organization.