Application Security Specialist

We Arita Solutions W.L.L, Qatar Based IT Company, are looking for Application Security Specialist candidate will be outsourced to client.

Duties and Responsibilities

Ensure that application security is an embedded and critical part of the software delivery lifecycle (including during the early stages of projects) regardless of delivery methodology and tool sets used (e.g. static code analysis)
Review control effectiveness evidence to assess the quality and effectiveness of the implemented controls
Conduct assessments to identify security risks in applications before they are implemented
Work with development teams to provide appropriate and effective remediation guidance for vulnerabilities discovered during various assessments
Perform application vulnerability assessments including regular scanning and Coordinate with development team to fix application vulnerabilities
Identify inherent vulnerabilities and information security risks within the applications
Address Continuously improve the processes and procedures to include report exceptions/risk acceptance for further review
Contribute to the development of security policies and security standards
Validate the secure design and development of IT applications including changes to existing applications
Analyze and specify the security requirements for secure development at all phases of SDLC
Ensure security and privacy requirements are met before the application development
Ensure application security guidelines are defined, documented, and implemented for development, testing and deployment
Identify architectural and other security risks associated with the solution, and compensating controls where necessary
Knowledge of Secure Development of technologies and platform used in the application
Regular Application Security testing and consistently to make sure that appropriate security measures have been added.
Remediation and tracking of the security issues identified within the application
Ensure compliance and alignment with regulators , Polices , Procedure , Standards , Frameworks ,baselines and Guidelines
Experience Required

10-15 years of progressive experience in application security including web services, Azure Cloud base application and services (PaaS, SaaS).

Minimum Educational Level Required

Bachelor’s degree in Computer Science or Similar, plus substantial continued education and training in the field.

Knowledge

Experience with web and mobile application security
Ability to effectively present and communicate security threats and risks to any audience and impress upon them the mitigation techniques and strategies
Familiar with key security models and regulations such as ISO 2700X and NIST
Self-motivated with the ability to prioritize, meet deadlines, and manage to change priorities
Strong understanding of OWASP top 10 and similar application security methodologies
Strong understanding of cryptography and SSL certificate lifecycle management
Experience with security tools including vulnerability scanning
Solid understanding of application security and system design
Familiarity with common vulnerabilities and attack vectors