Apply Apply

DESCRIPTION

Our client is a multinational universal bank and financial services holding company.

Responsibilities

• Perform risks analysis of applications of all kind (micro-services, N-Tiers, mobile…) and languages (JAVA, JS, C#...), for Business and IT
• Provide expertise to cover/mitigate risks and remediate non compliances and vulnerabilities
• In project phase, to guarantee the integration of security during all steps and coordinate the various security teams
• Contribute to framework improvements
• Identification of threats, risks scenarios and related impacts
• Identification of security needs and definition of security measures
• Providing precise recommendations of technical security solutions, on shelves based on client`s standard catalogue or ad ’hoc ones

Requirements

• Authentication/SSO mechanisms: OAUth2, SAMLv2, Kerberos, 2FA
• Encryption mechanisms: HTTPS, VPN
• API Security, for REST API and API Gateway
• Knowledge of security tests: DAST, SAST, SCA, Pentest
• OWASP TOP10, ISO27002, ISO27005
• Upper-Intermediate level of English, both spoken and written (B2+)

We Offer

• Competitive compensation depending on experience and skills
• Variety of projects within one company
• Being a part of a project following engineering excellence standards
• Individual career path and professional growth opportunities
• Internal events and communities
• Flexible work hours