Home > San Antonio jobs > San Antonio trades & labor jobs

Posted: Wednesday, September 6, 2017 1:04 PM

Requisition ID:


This Lead Applications Security Solutions Architect will be responsible for providing strategic direction and subject matter expertise in desktop, web, mobile and cloud application security across the enterprise. Through powerful collaboration with solution developers, business analysts and managed service providers, the successful candidate will investigate internal necessities to adequately understand business requirements with a view to producing application security solutions that meet current and future business needs. In addition to having a strong technical background, the successful candidate will be a strategic thinker capable of developing and implementing an effective application security framework : premised on best practices such as SDLC, OWASP Top 10 and CWE Top 25 : for the organization.


: Develop application security strategy and roadmap, and coordinate execution with internal and external technical partners;
: Design and develop technical requirements, security solutions and implementation/test plans for cloud, desktop, mobile and web application security;
: Provide thought leadership and subject matter expertise in Application Security requirements analysis and solutions design;
: Reduce injection and/or presence of security defects by working with Development and Quality Assurance teams to identify software security weaknesses and provide guidance on secure coding standards and best practices;
: Provide security design, consultancy, and assessment services while introducing improvements in technical security standards and security implementation designs/patterns;
: Conduct gap analysis and develop a road map of the evolution of Application Security capabilities from its current to a target state that meets security, agility, usability and compliance requirements;
: Perform threat modeling and deliver guidance on countermeasures and threat mitigation techniques;
: Create application security advisory service; develop, publish and maintain secure coding practices; and produce platform specific security standards as required;
: Define metrics that measure effectiveness of application security efforts;
: Develop testing checklists and methodologies, clearly document and articulate information risks associated with identified software flaws, and provide detailed guidance on remediation;
: Research, design and oversee implementation of application security technology solutions that meet organizational needs;
: Identify and tailor application security requirements to solution development projects as required
: Maintain oversight of the design, implementation and testing of IAM solutions to ensure appropriate and effective security attributes are embedded from the onset rather than bolted on after the fact;
: Develop reference Application and SaaS Security Architecture and ensure project and solutions delivery to that architecture.

: Minimum of a bachelors degree in engineering or information systems or related field of study required.
: 10 or more years of experience in a diversified IT or information security role is required;
: Excellent knowledge of secure software development lifecycle and practices is required;
: Experience mitigating or advising on mitigation techniques for OWASP Top 10 and SANS/CWE Top 25 security vulnerabilities required;
: Broad understanding of information security tenets and security architecture principles is required;
: Experience developing strategies and roadmaps in line with best practices and proven frameworks is required;
: Experience using static, dynamic and interactive application security testing tools is required;
: Ability to thoroughly review technical design components to ensure alignment with security policies, standards and best practices is required;
: Strong knowledge and


• Location: San Antonio

• Post ID: 30589448 sanantonio is an interactive computer service that enables access by multiple users and should not be treated as the publisher or speaker of any information provided by another information content provider. © 2017