Senior Security Architect
ECS ME LLC
Dubai, Dubai, United Arab Emirates
منذ 2 يوم

Education & Certifications :

  • Master or Bachelor’s degree in computer science, information systems management or related field
  • CISSP, TOGAF, SABSA, CEH, OSCP, OSCE, CRTP or others
  • Hack The Box private lab certifications if any
  • Experience :

  • 10 years of experience in information security where the majority of experience is in mobile, web application and digital channels security architecture and engineering.
  • Experienced in different mobile and web app technologies, tools and trends covering Android, iOS, Java Spring Boot, nodeJS and .Net.
  • Experienced in defining security baseline standards, best practices and security controls for various mobile and web application technologies.
  • Experienced in securing digital channels, platforms, market place, 3
  • party integration, payment gateways, micro services architecture, public cloud and containers technologies.

    Skills :

  • Hands-on experience on assessing the application using OWASP top 10 / SANS top 25 methodology for web and mobile
  • Well versed with ASVS and MASVS and utilizing it while doing the code review or the designing the application security
  • Hands-on experience with tools like Burp Suite Pro, Burp Extenders, OWASP ZAP, commercial SAST / DAST and IAST tools
  • Experience on validating automated tools result manually, able to craft payload and create PoCs
  • Intermediary scripting knowledge to create PoCs or automate basic tasks
  • Hands-on experience with network vulnerability scanners, port scanners and networking fundamentals
  • Should be able to define foundational security requirements for any mobile and web application solution including its underlying infrastructure
  • Should be able to provide security requirements for wide variety of technologies used in digital platforms e.g. third party libraries, SDKs, API integration
  • Should be able to perform threat modeling and come up with evil stories / abuse cases etc
  • Comprehensive knowledge of secure SDLC and shift left security
  • Should have experience in conducting vendor product evaluations and 3
  • party security assessments

  • Have worked with key security solutions and tools like Vault, PAM, SIEM, WAF, Firewall, IPS, IDS, DLP, PKI etc
  • Strong Risk assessment skills with knowledge of risk management frameworks
  • Should be able to work with Confluence and Jira
  • Knowledge of different cloud deployment models and cloud taxonomies
  • Knowledge of ITSM and related tools
  • Soft Skills :

  • Stakeholder Management skills
  • Influencer
  • Adaptive pitches the message based on the audience
  • Assertive needs to influence and enforce security in teams and squads
  • Superior Communication skills (both Business & Technical)
  • Deep knowledge of Agile way of working Scrum / Kanban
  • Decision Maker
  • Planning skills
  • Time Management
  • Autonomous
  • Positive & Constructive Attitude
  • Analytical thinking
  • Eye for detail
  • Competent and committed
  • Innovator / Out of the box thinker
  • Collaborative
  • بلغ عن هذه الوظيفة
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    تقديم
    بريدي الالكتروني
    بالضغط على "استمر" ، أعطي موافقة neuvoo على معالجة بياناتي وإرسال تنبيهات إلي بالبريد الإلكتروني ، على النحو المفصل في سياسة خصوصية لـneuvoo . يجوز لي سحب موافقتي أو إلغاء الاشتراك في أي وقت.
    استمر
    استمارة الطلب