Secure Code Specialist
Posted on Sep 5, 2019 by Maersk Line
Can you lead and inspire stakeholders across the world to live a brand every day and across every touch point? Can you demonstrate how people are making the difference in an asset driven, commoditized industry like container shipping? Can you hold the standard high, drive change and build value through bringing the brand to life every day?
Then read on!
In this challenging role you will be the secure code specialist across Maersk sitting with Product Services and Engineering organisation. As we are embarking to in-house our software development we have found the need for a professional that is the go to person in relation to code vulnerabilities. Your responsibility will be to drive secure coding standards using the standard Maersk tools. You will start by joining a Security Assessment and Remediation team to provide secure code SMEs inputs to develop and mature an application and security assessment framework. Accountable for reviewing and triaging security vulnerabilities reports, support the application teams to: (i) understand results; (ii) implement the right remediation solution to address the identified vulnerabilities and (iii) challenge and validate remediation timelines and effort estimates provided by the application teams.
What we are looking for:
Minimum 5 to 7 year's experience of information security in a global and similar size business
Advanced knowledge of Secure Software Development principles and Life Cycle
Knowledge and experience with remediating OWASP Top 10 Vulnerabilities
Knowledge of secure best practices in Scala, and Swift, Python, PHP is advantage
Previous experience with Coverity and Blackduck is an advantage
Good understanding of CI/CD principle
Ability to work with teams and clearly articulate technical concepts over conference calls.
Actively pursuing continuous learning to constantly update skills and keep abreast of current developments in the industry
Ability to strategize and look ahead at the big picture
Experience of Threat Modelling is beneficial
Excels at stakeholder management, communication and able to build credibility and demonstrate the value of writing code securely
Security related certifications (CISSP, CISM, CISA, Ethical Hacking) desirable
Contact me today to find out more!