Track This Job
Add this job to your tracking list to:
- Monitor application status and updates
- Change status (Applied, Interview, Offer, etc.)
- Add personal notes and comments
- Set reminders for follow-ups
- Track your entire application journey
Save This Job
Add this job to your saved collection to:
- Access easily from your saved jobs dashboard
- Review job details later without searching again
- Compare with other saved opportunities
- Keep a collection of interesting positions
- Receive notifications about saved jobs before they expire
AI-Powered Job Summary
Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.
Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.
Typical Day in Role:
• Partner with development, engineering, DevOps, application security and application owner teams to ensure seamless integration of Application Security into Release Management processes.
• Contribute to design and implementation of AppSec gating controls to ensure and compliant application releases.
• Align AppSec release practices with the Bank’s strategic goals of establishing a unified global release management framework across organization.
• Conduct gap analysis, research and analyzing current business processes, identify inefficiencies and recommend improvements aligned with security and operational goals
• Collaborate with AppSec engineer and stakeholders to gather and document security requirements for applications and systems.
• Facilitate cross-functional collaboration to embed security requirements early in the software development lifecycle.
• Ensure security controls and testing (e.g., SAST, DAST, SCA) are embedded in the CICD pipelines.
• Develop and maintain AppSec release management reporting for CIOs, providing visibility into security posture.
• Lead communication and training initiatives for CIO and development teams, including the creation of training materials and ongoing engagement across all CIO organizations.
• Facilitate effective communication and collaboration between business units and IT teams, ensuring alignment on goals, timelines and deliverables.
• Conduct gap analysis, research and analyzing current business processes, identify inefficiencies and recommend improvements aligned with security and operational goals.
• Support the training and rollout of security tools such as SAST, DAST, ensuring smooth transition into existing workflow.
• Analyze business and operational data to uncover risk and opportunities for improvement.
• Facilitate effective communication and collaboration between business units and IT teams, ensuring alignment on goals, timelines and deliverables.
Candidate Requirements/Must Have Skills:
1) 10+ years’ relevant working experience in IT (application security, release management etc.)
2) 3 + years’ experience as an application security analyst, with demonstrated experience in security integration, automation of security processes, risk assessment and mitigation
3) 2+ years’ experience practicing application security (SAST, DAST, SCA, MAST) throughout the Secure Software Development Lifecycle (SSDLC), with demonstrated experience in vulnerability assessment, security integration, automation of security processes, risk assessment and mitigation
4) 1+ years' experience designing SharePoint pages and authoring documentation in both SharePoint and Confluence environments, and experience with Jira/Confluence
5) 2+ years’ experience building executive-level reports and dashboard that communicates security posture.
Nice-To-Have Skills:
1) 2+ years’ experience with popular CI/CD tools and processes like BitBucket/GitHub, Jfrog Artifactory, Jenkins, Azure DevOps, GitLab CI/CD.
2) Proficiency in tools like Excel, Power BI, or other reporting platforms.
3) Programming and scripting experience (Python preferred)
4) 2+ years’ experience designing and delivering training programs (e.g., live sessions, documenting)
Soft Skills Required:
• Excellent communication skills and good support skills for triaging and analysis of issues for all development teams
• Proficient at collaborating with various stakeholders to achieve the objectives assigned
• Strong project management type of skills – organized, time management, etc.
• Self-sufficient, very meticulous with business analysis skills – gathering, translating, putting together requirements
• Detail oriented and skilled in summarizing and provides insights from complicated processes.
Education:
Undergrad or equivalent experience – valuing work experience more
CISSP or any security certification is an asset
Candidate Review & Selection
• 1-2 rounds – remote – Video Conference Call MS Teams
• 1st – HM and one or two Senior Leads – 1 hour – technical interview focusing on Application product/solution integration within the SDLC and vulnerability assessment knowledge and skills
Hiring Manager’s availability to interview: ASAP
Key Skills
Ranked by relevanceReady to apply?
Join TekStaff IT Solutions and take your career to the next level!
Application takes less than 5 minutes