Application Security Champion
Terug naar vacatures

Application Security Champion

Ref: 14995236

Toegevoegd op 20 January 2022
Contract type
Detachering

Functieprofiel

Modis is currently searching for an Application Security Champion for an international organization in Amsterdam Area. The Application Security Champion is an integral part of the development team and provides advice and support on security related SDLC elements as well as application development security practices and tools, such as..

Bedrijfsprofiel

Modis is a global consultancy which specializes in IT, Engineering and LifeScience. This is an excellent opportunity to develop your career with Modis, a global consultancy with over 200 clients in the Netherlands. As a Modis consultant you can be assured we take pride in developing your skills and giving you access to cooperate with our global clients. As a global consultancy Modis strives to retain our consultants in order to provide new and exciting opportunities within our local and global community.

Functie-eisen

MAIN ACTIVITIES
  • Supports DevSecOps/Secure SDLC framework design and process definition, providing security related SDLC elements;
  • Guides security requirements analysis for the applications in scope;
  • Recommends security related implementation aspects and guides implementation;
  • Guides threat modeling activities, security architecture gap assessment and threat risk assessment;
  • Supports application security testing planning and coordination and collect security related metrics;
  • Guides application vulnerability scanning and use of tooling, remediation activities, supports risk mitigation planning and vulnerability remediation;
  • Facilitates security specific training as needed, for e.g. Secure coding best practices, Security architecture design principles, OWASP TOP 10 vulnerabilities;
  • Leads application security/DevSecOps workshops on an ongoing basis;
  • Drives security related auditable reporting;
  • The AppSec champion is usually supported by one security focal per squad, i.e. a developer with an affinity for secure development;
  • Further improve and harden our DevSecOps toolchain;
  • Improve documentation on DevSecOps tool chain;
  • Act as a security evangelist towards the DevOps squads;
  • Provide security trainings to the DevOps squads to bring them to higher level of security awareness and importance of security by design principles.

QUALIFICATIONS

  • Strong knowledge and experience with security scanning tools like Vulnerability Advisor, Clair, OWASP DC, OWASP Track, OWASP ZAP etc;
  • Knowledge of below security aspects:
  • Fluent written and verbal communication skills in English.

WHAT DO WE OFFER

  • A competitive salary;
  • A car (for private use) or a public transport card;
  • A contribution pension;
  • An assigned talent manager who supports your personal growth;
  • Holiday payment of 8%;
  • A paid holiday leave;
  • And more secondary benefits (like a yearly bonus, discounts on insurance and so on).

Heb je een vraag of wil je meer informatie? Laat je gegevens achter en wij nemen contact met jou op!

Neem contact met ons op