Application Security Specialist

Job type

The Company
This financial product development company is a NZ success story.  Started over 20 years ago, they now have offices in the UK, Canada, Australia and the US and the Auckland head office has over 350 employees.  Having been acquired by a multi-national household brand name they now have their sights set on global reach and as such are growing their team.

The Role
One of the key teams within the organisation is the Application Security team.  Split across Auckland and London, their job is to work collaboratively with other teams across the global organisation and ensure that the highest level of security standards are adhered to and maintained during the development of the products. This will involve conducting security code reviews, analysing penetration testing results, remediating security issues as well as mentoring and upskilling developers.

Key attributes

  • Development experience with .Net development technologies (ASP.Net, Web API, C# library development), modern web technologies (React, Javascript) and SQL Server.

  • Application Security experience - code reviews, analyse penetration testing results

  • Knowledge of OWASP Top 10, CWE Top 25 and other common web vulnerabilities

  • Knowledge of regulatory frameworks - PCI DSS, ISO27001

  • Experience with SAST and DAST software (Contrast, Checkmarx, BlackDuck, Snyk, etc.)

  • Experience working in a highly regulated industry within an Agile environment

  • Technical ability to be able to communicate (both technically and non-technically) with a wide range of stakeholders and different teams such as customer operations teams and development teams

  • You enjoy keeping pace with emerging technologies and a genuine desire to upskill on new technologies and the latest industry thinking 

If you are passionate about security and looking to put into practise all that you have learnt to date, then this is the role for you. 

Being a globally renowned organisation, there is an excellent remuneration package on offer for the right person.