About the Role
Are you passionate about application security and cyber security challenges, do you want to leverage your expertise securing the design and implementation of Swift core applications and services? As Senior member of the team your core responsibility will be to support Agile and DevSecOps teams delivering secure applications. Additionally, you will be coordinating security initiatives, and enriching your experience by working with an international and diverse team of IT security experts and SMEs. Our team highly encourages the contribution of ideas and drives the generation of new concepts to maintain Swift outstanding security.
Education
University degree in Computer Science, Information Systems, or a related field; or equivalent work experience. Masters degree an asset.
Experience
Typically has 4 to 5 years of relevant work experience.
What to expect
As part of the team, you will lead and/or contribute to key activities such:
- Identify opportunities for improvements in work processes and innovative approaches to completing scope of work in an efficient way.
- Be the trusted partner of Agile and DevSecOps teams to support and collaborate securing their products from application and/or architecture perspective.
- Provide security requirements aligned with policies and standards and adapted to technologies stacks (Cloud Native, containers, orchestrator, etc.).
- Provide security technical assistance during software design, development and operations activities.
- Maintain security standards and guidelines to respond to changes in threats, technology, or best practices.
- Manage and promote usage of security tools in development pipeline and operations.
- Research and assess new threats, vulnerabilities and security alerts and recommend remedial actions.
- Design and implementation of capabilities, processes and/or tools to improve the security in the software delivery life cycle, security automation testing, secure by design activities, etc.
- Promote a strong security culture at Swift. We expect you to treat security culture as a brand, take it seriously and recognized that it is hard-fought and easily lost.
- Coach and share knowledge with team members.
Professional knowledge and expertise
Strong understanding in Application security
Security Architecture including threat modelling.
Security Requirements definition based on business needs, classification, threats, and risks.
Demonstrated experience in secure coding, security testing practices, tools and vulnerability management.
- OWASP top 10.
- SAST, DAST, SCA, API testing and/or containers vulnerability management
Risk assessments experience, being able to use advanced security and analytical skills to evaluate security risks, identify and design mitigations to bring risk within appetite.
Understanding of Agile and DevSecOps principles and how to integrate security into them.
Other expectations and skills
- Act with business understanding, build and reinforce customer relationship.
- Proactive and accountable for delivering results.
- Demonstrate operational excellence. Ability to self-learn and coach others in fast paced complex and technical environment.
- Planning, coordinate and report on the different activities.
- Strong analytical skills.
- Communicate effectively, strong written, verbal and presentation skills, able to adapt communication to diverse audiences.
- Team player, respect diversity
What we offer
We put you in control of career
We give you a competitive package
We help you perform at your best
We help you make a difference
We give you the freedom to be yourself
We give you the freedom to be yourself. We are creating an environment of unique individuals – like you – with different perspectives on the financial industry and the world. An environment in which everyone’s voice counts and where you can reach your full potential regardless of age, background, culture, colour, disability, gender, nationality, race, religion, sexual orientation, or veteran/military status.