Security Lead Officer
|Город:||Master of Code Global|
|Требования:||8+ years of experience in the Software development and engineering field|
High experience in one or more of the following programming languages: Java and NodeJS/JS.
High communication skills, work experience in global companies and a desire to function in a team-based environment
BSC degree in Computer Science, a related field or equivalent experience
Experience in leading Secure Development LifeCycle, threat modeling, penetration testing and in using and analyzing findings of Static Code Analysis and Open Source Analysis tools.
Ability to detect, explain, remedy and validate software security issues such as OWASP top 10 vulnerabilities.
Experience with ISO 27001 and other certifications like SOC 2+, Hitrust, PCI.
Security certifications such as CISSP, CSSLP, CEH, GIAC, and GSSP-JAVA.
Ensure consistency and standardization in software security, compliance, certification, IT policies, network configuration mechanisms for Client's DOEC.
Report and triage vulnerabilities, provide metrics, track, plan, and ensure timely remediation of open issues.
Participate in product requirements and design review meetings, review product design documents, provide security requirements and identify potential security threats in the design.
Provide practical security best practices, perform manual code review for major security features and implement automatic security tools (SAST, DAST, etc.) into the CI/CD processes
Coordinate risk assessment and penetration test activities.
Manage and supervise security-related topics
Preferred/Nice to have skills
Experience in public Cloud, Docker and K8S architectures
|Квалификация:||Act as the single leadership point of contact for security strategy and security product architecture at MOC DOEC.|
063 188 96 07