Secure Development Lifecycle Specialist - Kraków, Polska - Itds Polska Sp. Z O.o.
Opis
Technologies-expected : Java Script about-project : As a Secure Development Lifecycle Specialist, you will be working for our client, a leading global financial institution, within the Cybersecurity organization.
Your primary focus will be to analyze and execute activities related to cybersecurity processes, controls, standards, and regulatory requirements.
Krakow-based opportunity with the possibility to work 80% remotely responsibilities : Contributing to the ongoing development and adoption of Automated Dynamic Application Security Testing (DAST) security scanning service Driving continual improvement in DAST security scanning product efficacy, coverage, and quality Supporting DAST security scanning product vision, strategy, and metrics Assisting in the creation of authentication scripts, using Java Script and tool native scripting, to facilitate authenticated DAST web applications and APIs scanning Ensuring adherence to the three lines of defense organizational model with clear lines of responsibility, accountability, and segregation of duties Ensuring compliance with internal audit and external regulators to ensure organizational changes meet expectations Analyzing and executing activities to ensure compliance with Client's Cybersecurity policies and standards Contributing to the identification and development of processes, procedures, and tools to strengthen the bank's response to threats and incidents Assessing new technology products and projects utilizing security technologies pertinent to the department Acting as a role model to more junior members of the team Engaging with other Cybersecurity teams, senior management, and members of the Business when confronted with potential security issues Expanding skills, knowledge, and experience to enhance the overall capability of the function requirements-expected : 3+ years of development experience in Java Script 2+ years of experience in Dynamic Application Security Testing and related security scanning tools such as Invicti (Netsparker), Contrast, App Scan, etc.
2+ years of experience in consultancy and support to application teams including security scanning tool onboarding, vulnerability review and triage, false positive and rating challenges, scanning eligibility, and exceptions, etc.
Understanding of common technologies, protocols, and architectures used by web applications and APIs (HTML, XML, Java Script, JSON, REST, Microservices, etc.) Knowledge of the Common Vulnerability Scoring System (CVSS) Understanding of emerging technologies and corresponding security threats A degree in IT security Fluent English offered :
ITDS Business Consultants is involved in many various, innovative and professional IT projects for international companies in the financial industry in Europe.
We offer an environment for professional, ambitious, and driven people.The offer includes:
Stable and long-term cooperation with very good conditions Enhance your skills and develop your expertise in the financial industry Work on the most strategic projects available in the market Define your career roadmap and develop yourself in the best and fastest possible way by delivering strategic projects for different clients of ITDS over several years Participate in Social Events, training, and work in an international environment Access to attractive Medical Package Access to Multisport Program benefits : sharing the costs of sports activities private medical care remote work opportunities flexible working time fruits integration events video games at work coffee / tea drinks leisure zone sharing the costs of tourist services sharing the costs of tickets to the movies, theater access to +100 projects access to Pluralsight