Senior Security Architect
Dubai, Dubai, United Arab Emirates
14h ago

Education & Certifications :

  • Master or Bachelor’s degree in computer science, information systems management or related field
  • Hack The Box private lab certifications if any
  • Experience :

  • 10 years of experience in information security where the majority of experience is in mobile, web application and digital channels security architecture and engineering.
  • Experienced in different mobile and web app technologies, tools and trends covering Android, iOS, Java Spring Boot, nodeJS and .Net.
  • Experienced in defining security baseline standards, best practices and security controls for various mobile and web application technologies.
  • Experienced in securing digital channels, platforms, market place, 3
  • party integration, payment gateways, micro services architecture, public cloud and containers technologies.

    Skills :

  • Hands-on experience on assessing the application using OWASP top 10 / SANS top 25 methodology for web and mobile
  • Well versed with ASVS and MASVS and utilizing it while doing the code review or the designing the application security
  • Hands-on experience with tools like Burp Suite Pro, Burp Extenders, OWASP ZAP, commercial SAST / DAST and IAST tools
  • Experience on validating automated tools result manually, able to craft payload and create PoCs
  • Intermediary scripting knowledge to create PoCs or automate basic tasks
  • Hands-on experience with network vulnerability scanners, port scanners and networking fundamentals
  • Should be able to define foundational security requirements for any mobile and web application solution including its underlying infrastructure
  • Should be able to provide security requirements for wide variety of technologies used in digital platforms e.g. third party libraries, SDKs, API integration
  • Should be able to perform threat modeling and come up with evil stories / abuse cases etc
  • Comprehensive knowledge of secure SDLC and shift left security
  • Should have experience in conducting vendor product evaluations and 3
  • party security assessments

  • Have worked with key security solutions and tools like Vault, PAM, SIEM, WAF, Firewall, IPS, IDS, DLP, PKI etc
  • Strong Risk assessment skills with knowledge of risk management frameworks
  • Should be able to work with Confluence and Jira
  • Knowledge of different cloud deployment models and cloud taxonomies
  • Knowledge of ITSM and related tools
  • Soft Skills :

  • Stakeholder Management skills
  • Influencer
  • Adaptive pitches the message based on the audience
  • Assertive needs to influence and enforce security in teams and squads
  • Superior Communication skills (both Business & Technical)
  • Deep knowledge of Agile way of working Scrum / Kanban
  • Decision Maker
  • Planning skills
  • Time Management
  • Autonomous
  • Positive & Constructive Attitude
  • Analytical thinking
  • Eye for detail
  • Competent and committed
  • Innovator / Out of the box thinker
  • Collaborative
  • Report this job

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form