We are looking for an experienced Application Security Specialist to join our Cyber team, focusing on supporting our application security architecture and risk management program. You will help build a world-class capability to align with our key stakeholders in the Games teams, providing clear planning, review, threat modelling, architecture best practices, secure development lifecycle, and risk remediation.
What you'll be doing:
1. Provide guidance on security best practices, compliance, and undertake security testing.
2. Identify application security risks and requirements for new projects and system developments.
3. Represent cyber in review sprints on application security prior to live implementation.
4. Collaborate with architecture and development teams to review design and code for security vulnerabilities.
5. Establish a threat modelling capability and promote secure coding in the development lifecycle.
6. Provide technical advice to ensure security standards are understood and followed.
7. Develop security testing plans and integrate them into the software development lifecycle (S-SDLC).
8. Perform and oversee security testing and manage remediation of vulnerabilities.
9. Participate in the security incident response team.
10. Prepare and monitor application security metrics and KPIs.
Note: This position requires participation in an on-call rotation.
Minimum requirements:
* At least 3 years of experience in software engineering.
* At least 2 years of experience in application security.
* In-depth knowledge of application security vulnerabilities, testing techniques, and the OWASP framework.
* Strong communication and influencing skills, with the ability to build relationships across the organization.
* Understanding of secure web application development.
* Experience with web application and Agile development methodologies.
* Knowledge of IT and information security topics.
* Experience promoting security awareness.
* Ability to work independently and prioritize workload effectively.
* Experience working with the hacker/pen-testing community.
Jagex is a leader in developing and publishing engaging online games connecting millions of players worldwide, known for RuneScape and other successful franchises. We foster an inclusive workplace built on trust, autonomy, and shared passion. Our values include fellowship, craft, honesty, customer focus, and seizing opportunities. With over two decades of experience and a team of over 400, we continue to innovate in live game development, leveraging data-driven insights and community engagement.
Join us and enjoy our comprehensive Perks & Benefits, including:
* Private Healthcare, including Dental.
* Minimum 6% Pension contributions.
* Employee Assistance Programme & onsite Counselling.
* Life Insurance.
* Discretionary performance bonus.
* Enhanced family leave policies from day one.
* Flexible working hours.
* 25 days annual leave plus bank holidays, with options to buy or sell holidays.
#J-18808-Ljbffr