Application Security Architect
- Capgemini
- 9 to 12 Yrs
- Hyderabad
- 5 years ago
- Email to a friend
- Report this job
Job Description
Short Description
The role will focus on reviewing application security mechanisms inbuilt into the applications, by carrying out Security reviews i.e. Secure Design Review and Threat Modeling. The job involves working closely with development groups, Enterprise Architecture so that the applications are compliant with company's Information Security Standards.
Qualifications
Skills and Experience
- 5 8 years of providing application security services with exposure to application lifecycle security.
- Strong understanding of attack vectors from OWASP, WASC and mitigation of the same.
- Strong understanding of general security concepts and principles and application specific security concepts and principles.
- Understanding of Software Development Life Cycle (SDLC) with a focus on security.
- Good understanding of protocols (HTTP, HTTPS, SSL, TLS)
- Understanding of Threat Modeling, assessment of impact and likelihood of threat scenarios
- Understanding of applications design and architecture
- Understanding of Encryption (both Symmetric and Asymmetric), hash algorithm its principles and proper applicability.
- Understanding of Public Key Infrastructure, SSL/TLS Protocols and digital signature principles.
- Knowledge of common web technologies, including browsers, HTML, XML, HTML5, Ajax, JASON, WebServices, JavaScript and WebServers, database
- Capable of understanding end user requirements from security perspective.
- Understanding of emerging technologies and corresponding security threats
- Sound business and technical acumen
- Problem-solving and critical-thinking skills.
- Focused and versatile team player
- Self-motivated, flexible
Professional Qualification : CISSP/CSSLP will be an added advantage
Key Accountabilities
- Review Software applications for potential security vulnerabilities by conducting application security reviews i.e. Secure Design review, Threat Modelling.
- Liaison with Developers, Architects, Project Managers to understand the working of an application, how effectively they are implemented and where security mechanisms are employed.
- Understand the business requirements, evaluate potential products / solutions and provide technical recommendations.
- Be "hands on" with technology and to contribute to the design, development and support of projects with the Security recommendations.
- Review design and development artefacts to ensure security quality in the products being developed.
- Protect company's information assets by promoting the understanding and acceptance of Information Security Policy and Standards.
- Contribute to Enterprise Architecture in definition of the technology stack and various standards and guidelines for development teams
Employement Category:
Employement Type: Full timeIndustry: IT - Software
Role Category: Security Services
Functional Area: Not Applicable
Role/Responsibilies: Application Security Architect
Contact Details:
Company Name: CapgeminiLocation(s): Hyderabad
Keyskills: photoshop software development ssl sdlc autoca
Capgemini
A global leader in consulting, technology services and digital transformation, Capgemini is at the forefront of innovation to address the entire breadth of clients opportunities in the evolving world of cloud, digital and platforms.
Job Listings
We are in open beta version of website, please let us know if any issues, at: info(at)indigojobs.in
