Jobs
>
Par

    Application Security Architect Partial Remote - Cleo Consulting

    Cleo Consulting
    Cleo Consulting Par, United Kingdom

    2 weeks ago

    Default job background
    Description
    Job Title: Application SecurityArchitect
    Projected Start Date:
    Projected EndDate:
    Position Type: Contract
    Location:Boston MA
    Remote Work: Partial    Primary Skills: MuleSoft Enterprise ApplicationSupport Only GC orCitizens either W2 or C2C (Candidates own company). Not 3rd partycandidate RequiredSkills
    Job Description
    Seeking anexperienced Security Architect with a strong background inapplication security architecture reviews and security riskassessments. The ideal candidate will have significant experiencein securing containerized environments (OpenShift Podman andDocker) API Management (preferably with MuleSoft and Traceable)managing open source vulnerabilities with NexusIQ and implementingRuntime Application SelfProtection (RASP) with ContrastProtect. KeyResponsibilities:
    • Conduct comprehensive architecture reviews of newsoftware applications to identify security risks propose mitigationstrategies and ensure alignment with security bestpractices.
    • Perform Security Risk andAssessments (SRA) for critical applications identifying potentialvulnerabilities and recommending enhancements to strengthensecurity posture.
    • Develop and maintainsecurity policies and procedures related to application developmentand deployment.
    • Secure container orchestrationplatforms such as OpenShift and manage container runtimeenvironments using Podman and Docker.
    • Implement and manage API security solutions with apreference for experience with MuleSoft and Traceable.
    • Oversee the integration and management of open sourcesecurity using NexusIQ or similar tools to identify and remediatevulnerabilities.
    • Install configure andmaintain Runtime Application SelfProtection (RASP) solutionsspecifically Contrast Protect to provide realtime applicationsecurity.
    • Collaborate with development teamsto incorporate security considerations during the softwaredevelopment lifecycle (SDLC).
    • Provide securityguidance and training to development and operations teams to raiseawareness and improve security practices.
    • Staycurrent with emerging security threats technologies and regulationsto ensure our applications and infrastructure remainsecure.
    Qualifications:
    • Bachelors or Masters degree in ComputerScience Cybersecurity or a related field.
    • Minimum of 5 years of experience in an applicationsecurity role with handson experience in security architecture andrisk assessments.
    • Proven expertise in securingcontainer environments and managing container security.
    • Experience with API management and security especiallywith MuleSoft and Traceable.
    • Proficiency inmanaging open source security and using tools such asNexusIQ.
    • Experience with implementing RASPsolutions preferably Contrast Protect.
    • Strongunderstanding of secure coding practices ethical hacking and threatmodeling.
    • Familiarity with industry standardsand frameworks such as OWASP NIST and ISO 27001.
    • Relevant security certifications (CISSP CEH OSCP etc.)are highly desirable.
    • Excellent communicationanalytical and problemsolving skills.
    • WorkEnvironment:
    • Fastpaced and dynamic environmentrequiring adaptability and continuous learning.
    • Collaboration with crossfunctional teams andstakeholders.