Application Security Lead

Ensures MSBL Applications' security, leads initiatives, complies with assessments, collaborates with IT, provides support, improves reliability. Ideal: strong problem-solving, technical expertise, customer service.

Key Responsibilities:

• Implement the organization’s application security strategy.
• Assist with static (SAST), dynamic (DAST), and interactive (IAST) application security testing.
• Manage vulnerability assessments, penetration testing, and code reviews.
• Ensure remediation of security findings and track vulnerabilities to closure.
• Support audit and regulatory compliance efforts related to application security.
• Assist in security incident response related to application vulnerabilities.
• Conduct risk assessments and provide mitigation recommendations.
• Collaborate with cross-functional teams to address security risks.
• Rapidly gain an in-depth understanding of the existing applications' architecture landscape.

Job Profile:

• Required Skills and Knowledge:

  • 5+ years of experience in application security and development.
  • 2+ years in a leadership or mentorship role.
  • Good business acumen and ability to convert business requirements into solutions.
  • Comfortable discussing strategies with executives and implementation details with operational staff and IT.
  • Familiarity with cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes).
  • Understanding of DevSecOps and CI/CD security integration.
  • Strong leadership and team collaboration abilities.
  • Excellent communication skills for technical and non-technical stakeholders.
  • Problem-solving mindset with a proactive approach to security risks.
  • Ability to work under pressure in a fast-paced environment.
  • Document solutions and maintain a knowledge base for Enterprise Applications.
  • Assist in application deployments, patches, and upgrades in coordination with DevOps/Engineering teams.

• Required Technical Skills:

  • SQL databases (MySQL, PostgreSQL, SQL Server) and query troubleshooting.
  • APIs & Web Services (REST, SOAP, Postman).
  • Log analysis tools (Splunk, ELK, Grafana).
  • Operating Systems (Windows Server, Linux).
  • Scripting (PowerShell, Bash, Python) for automation.
  • Familiarity with ITSM tools (ServiceNow, JIRA, Zendesk).
  • Basic understanding of networking (HTTP, DNS, firewalls) and cloud platforms (AWS, Azure, GCP).
  • Experience in cross matrix reporting structure in a multinational corporation.

• Required Qualifications:

  • Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field.

• Travel / Rotation Requirements:

  • Moderate (25%) travel required.