Application Security Architect Cover Letter

I would like to submit my application for the application security architect opening. Please accept this letter and the attached resume.

Previously, I was responsible for direction and advise on emerging threats, vulnerabilities, and security practices that may have an impact on the definition of new innovative solutions.

Please consider my qualifications and experience:

• Understanding of main security principles, such as multi-layered protection (Defense in Depth)
• Understanding of mitigation mechanisms for every type of threats
• Good knowledge of Security Features and Mechanisms provided by development platform/technologies/OS
• Possess current security certifications (e.g., CISSP, CISM, CEH, GIAC)
• Understanding of malware such as worms, viruses, trojans
• Solid understanding of enterprise wide technologies, including databases, operating systems, web applications
• Experience with web application development ASP.NET, ASP, PHP, J2EE, JSP, preferably J2EE
• An Information Security and/or Web application security certification

I am excited to be applying for the position of application security architect. Please accept this letter and the attached resume as my interest in this position.

In my previous role, I was responsible for for ongoing Security Reviews designed to evaluate the current environment as well new and emerging features and technologies to improve iHerb's Security Posture.

Please consider my experience and qualifications for this position:

• APIs and their integration with different environments
• A strong understanding of enterprise, network, system and application-level security issues
• Familiarity with industry standards, guidelines and regulatory compliance requirements related to information security and cloud computing such as ISO 27001, Cloud Security Alliance (CSA), NIST 800-53, PCI DSS, SOC2
• Exposure to security controls such as static scanners, dynamic scanners, web proxies, and web application firewalls
• Experience in the development, deployment and automation of application security solutions in an enterprise cloud based environment
• Expert level knowledge of security principals and technologies
• Thorough understanding of TCP/IP networking, Active Directory, DHCP, and DNS
• Experience in developing and designing secure applications for public clouds

Please consider me for the application security architect opportunity. I am including my resume that lists my qualifications and experience.

In the previous role, I was responsible for guidance on existing and emerging threats in the web and mobile application space, as they apply within the AbbVie environment.

My experience is an excellent fit for the list of requirements in this job:

• Strong program development, program management and leadership skills including experience in developing, documenting and establishing application security programs and best practices
• Deep application development / software development experience, understanding of security protocols and APIs
• Curious, inquisitive, lifelong learner and self-starter
• Experience with agile software development methods using SCRUM preferred
• Able to effectively give, receive, and respond to feedback
• Preferred - Experience with providing application security for financial institutions
• Experience and strong technical knowledge in application security, cryptography, authentication and authorization, and security engineering including threat modeling
• Experience with service oriented or Microservices architecture

Please consider me for the application security architect opportunity. I am including my resume that lists my qualifications and experience.

In the previous role, I was responsible for senior leadership with security trends and advancements, emerging threats and any pertinent security issue for the entertainment industry.

My experience is an excellent fit for the list of requirements in this job:

• Knowledge of OAuth and OpenID standards and integrating them into solutions
• Strong knowledge of security vulnerabilities and best development practices to avoid pitfalls
• Experience with cloud platforms such as Azure and AWS and related technologies
• Bachelors/Masters in Computer Science or related field is preferred
• Knowledge of network attacks, post exploitation skills, security bug classification frameworks such as DREAD, OWASP Top 10 and experience applying security bug classification methods in Testing and QA
• Experience in providing technical oversight to other project team members to maintain engagement quality
• Experience in handling client queries, providing recommendations & mitigation strategies in order to remediate vulnerabilities
• Secure software development practices and frameworks -Mobile application architecture, threat analysis or control implementation -Security testing methodologies, tools and techniques

I would like to submit my application for the application security architect opening. Please accept this letter and the attached resume.

In my previous role, I was responsible for technical advice to the OCS Partnership Leader, Operations Director, Regional Security Directors and Global Security Advisors on emerging threats and tactics, techniques and procedures globally.

Please consider my qualifications and experience:

• Strong familiarity with OWASP Top 10 web vulnerabilities and how to engineer software to avoid them
• Demonstrated proficiency in JavaScript, HTML, PHP, .Net or Python
• Familiar with threat models for large, distributed systems and cloud-based architectures
• Experience applying static and/or dynamic analysis in application testing and with application test methodologies and tooling
• Experience with AWS, Google Cloud and Azure
• Experience with cryptography, authentication, authorization and security engineering
• Willingness to take responsibility to drive new developments and a high level of commitment
• Practical experience in contributions to open-source software projects