Security is not just protection; it's enablement. We are seeking a Security Verification Lead to drive end-to-end security verification across modern applications and cloud platforms, partnering with engineering teams to identify vulnerabilities and embed secure-by-design practices throughout the development lifecycle.
Key Responsibilities:
- Conduct secure design reviews, threat modelling, secure code reviews, and penetration testing across mobile, web, and API applications.
- Analyze security scan results and work closely with developers to triage, prioritize, and remediate vulnerabilities.
- Prepare clear and comprehensive reports and presentations tailored for both technical teams and executive stakeholders.
- Communicate security findings, risk assessments, and improvement strategies effectively to cross-functional teams and leadership.
- Develop, maintain, and promote security standards and best practices, including areas such as cryptography, authentication, and access control.
- Design and deliver security training and awareness programs to help engineering teams adopt secure design principles.
- Lead security engagements with engineering teams from initial scoping through remediation, ensuring timely and effective issue resolution.
- Provide mentorship and guidance to junior security professionals within the team.
Key requirements:
- Strong software development background with proficiency in several modern programming languages.
- Deep understanding of secure design principles and secure coding best practices.
- Experience with security scanning tools for mobile, web, and API application testing.
- Minimum 6 years of experience in application security, including at least three of the following areas:
- Cloud platforms such as AWS, Azure, or GCP
- Designing highly available and secure systems within regulated environments such as financial services
- Container-based infrastructure design in cloud environments
- Development of mobile applications, RESTful APIs, or web applications
- Secure code review for mobile, web, or API applications
- Penetration testing for mobile, web, or API applications
If you wish to send a direct message, kindly send an email to [Confidential Information]
We have exciting career opportunities to share. Talk to us!
Find us here at: https://www.thepositivelinks.com/
Find more jobs at: https://jobs.thepositivelinks.com/jobs
