Keywords
Skills
- Define and run secure software development lifecycle project (sSDLC) to integrate security in the application development from the analysis and design to implementation and verification (QA) in scrum teams globally. The sSDLC concept involves threat modeling by application security architects and security champions, and automated security source code analysis, dependency checking, IAST, DAST integrated in the CI/CD pileline
- Audit local security activities of different regional offices for secure software development and security assessment
- Define and implement global application security strategy based on OWASP SAMM including as-is analysis of the current application security maturity model, defining target maturity model and defining roadmap and finally implementation and feedback.
- Conduct penetration testing of web and mobile applications and web services
- Support application design by providing security architectural recommendations/solutions
- Counseling development teams in information security related topics
Project history
Local Availability
Open to travel worldwide
