About the Role
Are you passionate about application security and cyber security challenges? Do you want to leverage your expertise in securing the design and implementation of Swift core applications and services? As a Senior member of the team, your core responsibility will be to support Agile and DevSecOps teams in delivering secure applications. Additionally, you will be coordinating security initiatives and enriching your experience by working with an international and diverse team of IT security experts and SMEs. Our team highly encourages the contribution of ideas and drives the generation of new concepts to maintain Swift's outstanding security.
Education
University degree in Computer Science, Information Systems, or a related field; or equivalent work experience. A master's degree is an asset.
Experience
Typically has 4 to 5 years of relevant work experience.
What to Expect
As part of the team, you will lead and/or contribute to key activities such as:
* Identify opportunities for improvements in work processes and innovative approaches to completing the scope of work efficiently.
* Be the trusted partner of Agile and DevSecOps teams to support and collaborate in securing their products from an application and/or architecture perspective.
* Provide security requirements aligned with policies and standards and adapted to technology stacks (Cloud Native, containers, orchestrator, etc.).
* Provide security technical assistance during software design, development, and operations activities.
* Maintain security standards and guidelines to respond to changes in threats, technology, or best practices.
* Manage and promote the usage of security tools in the development pipeline and operations.
* Research and assess new threats, vulnerabilities, and security alerts and recommend remedial actions.
* Design and implement capabilities, processes, and/or tools to improve security in the software delivery life cycle, security automation testing, secure by design activities, etc.
* Promote a strong security culture at Swift. We expect you to treat security culture as a brand, take it seriously, and recognize that it is hard-fought and easily lost.
* Coach and share knowledge with team members.
Professional Knowledge and Expertise
Strong understanding of application security, security architecture including threat modeling, and security requirements definition based on business needs, classification, threats, and risks.
Demonstrated experience in secure coding, security testing practices, tools, and vulnerability management:
* OWASP Top 10
* SAST, DAST, SCA, API testing, and/or containers vulnerability management
Risk assessment experience, with the ability to use advanced security and analytical skills to evaluate security risks, identify, and design mitigations to bring risk within appetite.
Understanding of Agile and DevSecOps principles and how to integrate security into them.
Other Expectations and Skills
* Act with business understanding, build and reinforce customer relationships.
* Proactive and accountable for delivering results.
* Demonstrate operational excellence. Ability to self-learn and coach others in a fast-paced, complex, and technical environment.
* Planning, coordinating, and reporting on different activities.
* Strong analytical skills.
* Communicate effectively, with strong written, verbal, and presentation skills, able to adapt communication to diverse audiences.
* Team player, respecting diversity.
What We Offer
We put you in control of your career.
We give you a competitive package.
We help you perform at your best.
We help you make a difference.
We give you the freedom to be yourself. We are creating an environment of unique individuals – like you – with different perspectives on the financial industry and the world. An environment in which everyone’s voice counts and where you can reach your full potential regardless of age, background, culture, color, disability, gender, nationality, race, religion, sexual orientation, or veteran/military status.
#J-18808-Ljbffr