many times) basis. The Application Security Architect will be responsible for translating the group-wide information and cyber security strategy and requirement into secure-by-design Application security architecture throughout the organisation. The Architect will work closely with the Security and DevOps teams, reviewing large bodies of code … effective application security solutions aligned to the Information Security and business strategy. Act as Subject Matter Expert for Application threat modelling, securecoding practices in Java and C++, and DevSecOps practices. Contribute to the security technology roadmap, policies and standards. Support development teams in implementing threat modelling … of Application Security Strong experience developing patterns for application security architecture Subject Matter Expertise in application threat modelling Strong understanding of securecoding practices in Java and C++, and DevSecOps practices Experience of automated build and deployment pipelines Experience of operating one or more of SAST, SCA more »
Azure Service bus. C# and PowerShell Knowledge of using version control systems e.g. Git. Automated Testing using BDD and TDD approach. Provisioning automated secure cloud Infrastructure using tools such as ARM Templates/Terraform. KNOWLEDGE Understanding of Agile, Scrum and Kanban methodologies. Passion for automation of Infrastructure. Repeatable … and patterns, including knowledge of Enterprise Service Bus. Working knowledge of data warehousing, data lakes, data migration and Big Data. Good securecoding standards such as OWASP. Auditing and monitoring approaches and tools. Please apply via this ad in the first instance or send a CV with more »
project use cases, ensuring efficient, automated workflows Pipeline Maintenance: Regularly update and maintain existing CI/CD pipelines to ensure they are efficient, secure, and up-to-date with the latest technology standards Integration of Solutions: Work collaboratively with other teams to integrate their solutions and tools into … application security policies and web application Firewalls. F5 with API Gateway: Experience: Integrating F5 solutions with API Gateway technologies, demonstrating the ability to secure and manage APIs effectively. Experience in using F5 with Kong API Gateway; managing, and optimizing API traffic through F5 systems. F5 GTM and Proxy … and infrastructure Security Practices in DevOps (DevSecOps): Understanding of security practices in a DevOps environment. Familiarity with security scanning tools, implementing securecoding practices, and ensuring compliance with industry standards Agile and Scrum Methodologies: Experience with Agile and Scrum methodologies. Ability to work in fast-paced, iterative more »
Sheffield, Yorkshire, United Kingdom Hybrid / WFH Options
J & C Associates Ltd
project use cases, ensuring efficient, automated workflows Pipeline Maintenance: Regularly update and maintain existing CI/CD pipelines to ensure they are efficient, secure, and up-to-date with the latest technology standards Integration of Solutions: Work collaboratively with other teams to integrate their solutions and tools into … application security policies and web application Firewalls. F5 with API Gateway: Experience: Integrating F5 solutions with API Gateway technologies, demonstrating the ability to secure and manage APIs effectively. Experience in using F5 with Kong API Gateway; managing, and optimizing API traffic through F5 systems. F5 GTM and Proxy … and infrastructure Security Practices in DevOps (DevSecOps): Understanding of security practices in a DevOps environment. Familiarity with security scanning tools, implementing securecoding practices, and ensuring compliance with industry standards Agile and Scrum Methodologies: Experience with Agile and Scrum methodologies. Ability to work in fast-paced, iterative more »
Industry (Insurance or Exchange highly desirable) Hands on experience Operating application tools Must have subject matter expertise in application threat modelling, securecoding practices in Java and C++, and DevSecOps practices. Must have current experience of operating SAST, SCA, DAST, IAST, MAST. Logistics: 6 Month Rolling Contract more »