Description
We have an exciting job opportunity for Cyber Risk & Security Lead Engineer/Consultant - London, UK - Contract
Title: Cyber Risk & Security Lead Engineer/Consultant
Location: London, UK
Duration: Contract
Job Description:
As a security leader, guide the team on security governance, architecture, and compliance.
Provide periodic security maturity and governance updates to key management stakeholders.
Strong experience and knowledge of cloud, web application attacks and protections.
Security architecture design and threat modelling for web applications in AWS cloud, Kubernetes, Microservices and Mobile applications.
Experience on vulnerability assessments and penetration testing using different commercial and open-source tools such as Qualys, OpenVAS, BlackDuck, vulnscan and CheckMarx.
Promote and implement DevSecOps with a strong focus on SDLC security.
Exposure to privacy regulatory compliance (GDPR) and privacy engineering is a plus.
Must be comfortable with at least one programming language. Must be able to review and identify source code security bugs in commonly used languages.
Should be able to explain different OWASP Top 10 vulnerabilities and defenses
Good knowledge of web app attacks and defenses
Familiarity with using SIEM tools for operations security boards and DevOps boards for SDLC security boars.