Application Security Architect Resume Samples

The Guide To Resume Tailoring

Guide the recruiter to the conclusion that you are the best candidate for the application security architect job. It’s actually very simple. Tailor your resume by picking relevant responsibilities from the examples below and then add your accomplishments. This way, you can position yourself in the best way to get hired.

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

CHOOSE THE BEST TEMPLATE - Choose from 15 Leading Templates. No need to think about design details.

USE PRE-WRITTEN BULLET POINTS - Select from thousands of pre-written bullet points.

SAVE YOUR DOCUMENTS IN PDF FILES - Instantly download in PDF format or share a custom link.

Create a Resume in Minutes

B Jacobs

Berta

Jacobs

683 Jacobson Glens

San Francisco

+1 (555) 372 8909

683 Jacobson Glens

San Francisco

Phone

p +1 (555) 372 8909

Experience Experience

Houston, TX

Application Security Architect

Houston, TX

Hegmann and Sons

Houston, TX

Application Security Architect

Selecting and maintaining security testing tools for evaluating developed code
Training development teams on writing secure code, methods of identifying and fixing vulnerabilities, and development strategies that minimize risk
Training and coaching application teams on secure coding practices and the usage of security tools
Creating, reviewing and enforcing security design patterns to support architecture
Active interest in promoting security awareness and mentor members of the development teams on company security standards, including secure coding guidelines
Knowledge of secure coding methodologies including OWASP Secure SDLC, MS-SDLC,
Manage a team of architects, mentoring their growth and measuring performance against defined goals

Houston, TX

Web Application Security Architect

Houston, TX

Lockman, Swift and Senger

Houston, TX

Web Application Security Architect

Providing coaching, mentoring and security expertise for all development teams
Demonstrated development knowledge of Java and .NET frameworks
Working with product owners, developers, penetration testers and other security architects on efforts to mitigate identified risks in existing products
Overseeing integration of automated security tools to drive secure product as it is developed
Educating developers on secure coding principles and security best practices
Representing the company within the security community and with customers on topics related to the security of Datto’s products and services
Advising on secure architectures related to desktop applications, web applications, and cloud computing as it relates to core products and services

present

Philadelphia, PA

Senior Application Security Architect

Philadelphia, PA

Wilderman, Schumm and Murray

present

Philadelphia, PA

Senior Application Security Architect

present

Perform secure code development training to Developers and relevant teams
Provide recommendations for business and process improvement
Establish the vision for the group to take it to the next level and work with the key stakeholders to drive the SASA activities in our sector
Provide SME support to projects and programs
Evaluate/apply new and emerging security technologies and solutions
Identify enhancements to IS tools, standards, and processes
Plan the resolution of any identified vulnerabilities/issues

Education Education

Bachelor’s Degree in Computer Science

Syracuse University

Bachelor’s Degree in Computer Science

Skills Skills

Knowledge of and ability to identify vulnerabilities in applications written in the above languages
Demonstrated ability to model professional integrity and behavior in a multicultural environment
Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
Detailed in-depth application architecture skills and knowledge including presentation, application, messaging, data and network layers
Knowledge of architecture and security architecture good practice frameworks such as TOGAF and SABSA
Knowledge and ability to assess web and non-web applications
Strong attention to detail
Considerable knowledge in the design and/or implementation of testing systems, methodologies, and industry standard testing suites
Thorough knowledge and awareness across key IS domains such as identity access management, cryptography
Ability to present findings and summaries of issues to senior management

Create a Resume in Minutes

15 Application Security Architect resume templates

Read our complete resume writing guides

Application Security Architect Resume Examples & Samples

5-9 years of demonstrated experience in IS strategic planning and architecture migration strategies
Thorough knowledge and awareness across key IS domains such as identity access management, cryptography
Experience in working in a highly regulated environment and global organization
Certified Enterprise Architect

Application Security Architect Senior Resume Examples & Samples

Master’s degree in Computer Science or equivalent experience preferred
7-10 years of demonstrated experience as a senior enterprise IS architect and implementing architecture best practices, preferably in the Financial Industry
7-10 years of demonstrated experience in IS strategic planning and architecture migration strategies

Application Security Architect Resume Examples & Samples

Work in a global team and take over the responsibility for the collaboration and mobile security area
Develop architecture, strategies, standards and guidelines for collaboration and mobile security technologies and solutions
Interface with IT and Business management, IT Architecture, IT and business risk , systems engineering, product management and application development for analysis, requirements gathering and consulting
Define requirements for security solutions to the service and product management teams whilst acting as the subject matter expert for collaboration and mobile security and support key initiatives
Communicate architectures, strategies and standards to the IT and business community internally and externally and provide market research and help bringing new innovative security technologies to UBS

Senior Application Security Architect Resume Examples & Samples

To engage in the initial requirements definition (including analysis of threats and risks and alignment with Citi IS and Architecture standards)
Conduct and facilitate security reviews including Secure SDLC testing requirements throughout the development lifecycle
Facilitate "table-top"/red-team/scenario analysis exercises in conjunction with other SME's
Facilitate and support threat/architecture reviews and scenario analysis/red team/tabletop exercises
Identify enhancements to IS tools, standards, and processes
Provide SME support to projects and programs
Ideally candidate who has worked for a similar organization, with 7+ years of experience as application security consultant / penetration tester / security architect
Must have SME level knowledge of web application vulnerabilities and web application business logic flaws and threats
In depth, hands-on understanding and application architectures and technology (including web applications, mobile technology, web 2.0 technology, identity and access management)
Demonstrable experience with mobile application security, HTML5, Web Services assessment, identity management will be highly regarded
Thorough understanding of industry and corporate technology standards for Information Security
Detailed familiarity with security hacking tools and techniques
Experience in research and development
Strong knowledge of software security for web and mobile applications
Background with mobile hardware and software technologies
Strong understanding of information security and risk analysis processes, including threat modeling

Advisory Manager Cyber Security Application Security Architect Resume Examples & Samples

Work with client personnel to enhance the Software Development Life Cycle (SDLC) by adding security to remove vulnerabilities and protect business logic. Establish a security program for the SDLC; capture the client's current application architecture; lead the overall application review process; identify application vulnerabilities; propose architectural changes; and design, coordinate and implement these changes at procedural and technology levels
Perform detailed Quality Assurance (QA) review of web-based applications; identify and validate application vulnerabilities; and perform actual remediation at architectural and source code levels
Complete the draft and final reports and any other deliverables as specified in planning documentation. Ensure project documentation is complete and archived appropriately
Collaborate with the engagement team to plan the engagement and develop work programs, timelines, and planning documentation. Work with the team to document the business processes dependent on IT. Ensure high-quality client service by directing daily progress of fieldwork, informing supervisors of engagement status, and managing staff performance
A minimum of 4+ years of related work experience writing enterprise security standards, policies, coding guidelines
Demonstrated experience in key Information Security domains such as identity, access management, cryptography
Enterprise experience with application development for mobile platforms such as iOS or usage of mobile frameworks such as Kony, PhoneGap, is a plus
Understanding of best practice methodologies in Application Security including OWASP, mobile
Strong communication skills with demonstrated ability to interact with senior management, technical SMEs, business partners and influence decisions
The successful candidate must hold or be willing to pursue related professional certifications such as the CISSP, CISM, GIAC, Open Group Certified Architect or CEH certification
A valid driver's license in the US and a valid passport required; willingness and ability to travel domestically and internationally to meet client needs; estimated 60-80%

Application Security Architect Resume Examples & Samples

Educate coworkers on threats and countermeasures
Assess information security risk in projects
Communicate corporate security policies and standards
Help ensure lifecycle processes are followed
Demonstrate and teach best practices for secure application development
Conduct application security reviews and assessments
Strong knowledge of secure coding practices, threat modeling, and application assessment tools
Experience with agile application development methodologies (e.g. Scrum)
Security training and participation in security organizations such as OWASP. Security certification a plus
Strong communication skills and experience consulting across organizational boundaries
Middleware tools, both open source and commercial (e.g. WebMethods, Tibco, ServiceMix)
Experience with web single sign on and cross site authentication technologies (e.g. SAML, Open ID)
Software as a Service and Hosted solution deployments, Salesforce.com experience a plus

Technology Technology Risk Application Security Architect Resume Examples & Samples

Driving adoption of embedded application security controls as part of the Software Development Life Cycle (SDLC)
Assess applications for design related security risks and assist teams in determining appropriate remediation for issues identified
Provide guidance on existing and emerging threats in the web and mobile application space
Contribute to the technical understanding and adoption of information security standards, solutions and tools
Be highly committed both to achieving the deliverables and to the team itself
Have the discipline and interpersonal skills to work well in a global environment, complementing teams in other locations
Work with engineers to develop customized security testing strategy to complement the existing security testing program managed by Technology Risk
Secure software development practices and frameworks
Mobile application architecture, threat analysis or control implementation
Security testing methodologies, tools and techniques
Understanding of common application security vulnerabilities and controls to remediate
Ability to engage technical client base of engineers and communicate security requirements, potential risks and influence development practice

Advisory Manager Cybersecurity Application Security Architect Resume Examples & Samples

Generate new business opportunities by participating in market facing activities and developing thought leadership materials
Understand EY and its service lines. Actively encourage team members to contribute ideas and identify opportunities to introduce Ernst & Young LLP services
Foster an innovative and inclusive team-oriented work environment. Play an active role in counseling and mentoring junior Cybersecurity team members
Foster relationships with client personnel to analyze, evaluate, and enhance information systems to develop and improve security at procedural and technological levels
Demonstrated experience in Cybersecurity strategic planning, architecture migration strategies, or security engineering strategy
Experience performing application architecture threat modeling and risk assessments
Understanding of best practice methodologies in application security including OWASP and mobile
Deep understanding of development methodologies such as waterfall, agile, and continuous integration
Strong communication skills with demonstrated ability to interact with senior management, technical SMEs, business partners, and influence decisions
Ability to work on multiple, simultaneous initiatives

Application Security Architect Resume Examples & Samples

Ten plus (10+) years of combined experience in technology architecture, with at least five (5) years of Information Security or related experience in a mission-critical distributed environment; Multi-discipline experience a strong differentiator
Strong understanding of technology, processes, and best practices associated with security infrastructure and data environments
Knowledge of Bluecoat, Siteminder, Guardium, Vormetric, and related encryption and tokenization technologies
Strong working knowledge of networking technologies; to include securing data in motion and at rest
Proficient knowledge of SQL is a plus
Candidate must be comfortable leading in a fast-paced team environment, and possess very good communications skills
Candidate should be able to manage people and projects at a senior level, including ability to lead cross-functional discussions and project reviews
Excellent business acumen with a strong ability to map business requirements to technical solutions
Should be highly proficient in creating logical and physical blueprints, technical and executive presentation, and comprehensive business cases
Proficiency with Word, Excel, Powerpoint, and Visio a must

Application Security Architect Resume Examples & Samples

Sabre Travel Network® - the world’s leading provider of solutions for the travel industry
Sabre Airline Solutions®, the world’s leading provider of solutions for the air transportation industry
Sabre Hospitality Solutions®, the world’s leading provider of solutions for the hospitality industry
Travelocity® - a leading online travel company
Provides advanced technical engineering services at a system or enterprise level
Leads a team in completing security vulnerability reviews and risk assessments for highly complex environments
Addresses problems of systems integration and multiple platforms and can identify multiple approaches with respective to cost, risk and support tradeoffs
Brings subject matter expertise in multiple operating systems and deep skills in two technical security focus areas
Works on complex problems that impact the design success of current products or addresses broad design issues of future products or technologies
Incumbents matched here are typically well-known within their industry, if not internationally recognized
As an expert in the field, uses professional concepts in developing resolution to critical issues and broad design matters
Often serves as consultant to management and external spokesperson for the organization
Documents patterns, security best practices and collaboratively govern standards
Exercises wide latitude in determining objectives and approaches to critical assignments
Minimum 8 years related experience
4 years Unix or Linux experience
Prior development experience required
Must possess ability to handle multiple project assignments
Experience with global outsourcer (general IT or security services) required

Senior Application Security Architect Resume Examples & Samples

Identify enhancements to IS tools, standards and processes
Ideally candidate who has worked for a similar organization, with 7+ years of experience as application security consultant/penetration tester/security architect
Demonstrable experience with mobile application security, HTML5, Web Services assessment and identity management will be highly regarded
Strong understanding of information security and risk analysis processes including threat modeling

Application Security Architect Resume Examples & Samples

Maintain clear security standards and policies
Develop comprehensive security practices conforming to these policies and standards for use in the design of applications in the field
Collaborate to create secure architectures, and/or stacks for development, testing, and deployment
Insure that compliance is built into the systems, and where this is not feasible, insure that a verifiable process is created in order to demonstrate secure practices and minimize risk
Lead security architect reviews, as well as reviews
Ensure changes do not create or introduce security gaps; or degrade critical security controls
Participate in the architectural reviews across the enterprise
Collaborate with developers, engineers, subject matter experts and stakeholders to develop practical and well-understood standards and milestones for secure application development
Collaborate on the use (and security analysis) of proposed, proprietary, and open-source software platforms
Promote information security policies and standards across the enterprise that apply directly to architecture, development stacks, testing frameworks, deployment frameworks, and continuing monitoring and support
Collaborate with Vendor/Consulting leadership to ensure third party architects, vendors and service providers conform to our policy, procedures and standards across architecture and security guidelines
4+ years of experience on a number of Security Technologies and a solid understanding of Information and Networking Security
Understanding of SANS Top 20 and OWASP Top 10 vulnerabilities
Experience with Application Security assessment tools, such as: HP Fortify, Burp Suite, etc
Experience with Web services and App servers, i.e. Apache, Tomcat, jBoss, WebSphere etc
Strong understanding of all phases of the following: Application Security; Communication Protocols; Application Development Methodologies; Cryptographic Domains; Database security; and, Application Security Architecture
Strong technical knowledge and a deep understanding of IT Application Security and Operations and Concepts, including: database design, administration and security; Unix and Windows O/S architecture, system administration and development; and, best practices in deployment, strengths and vulnerabilities
Strong understanding of the Security Issues between Databases, Systems and Networks
Considerable knowledge in the design and/or implementation of testing systems, methodologies, and industry standard testing suites
Excellent communication skills (written and verbal)

Senior Web Application Security Architect Resume Examples & Samples

Understand current security posture of mobile ecosystem and specifics for Visa's enterprise
Integrate mobile security capabilities with other security pillars that include identity access management, data protection, network security and application security
Advise leadership on Mobile Security issues, systems, processes, products, and services
Work with cross-functional experts to set strategic direction for Mobile Security
Degree Required & Years of Experience: B.S + 10/MS + 7 years or higher in Electrical Engineering or Computer Science or relevant field
Proven experience in architecting complex web applications with backend services expertise such as API Gateway, Identity and Access Management Services, Data Protection technologies, Security Information Event Management
Good understanding of Mobile Application Security (software and firmware) and related peripheral technology such as NFC
Hands on SW development experience in two or languages: C/Objective-C/C++/Swift/Java/Scala
Good understanding of security challenges involve in smartphone platforms (iOS, Android and/or BlackBerry) and mobilized services. Good understanding of embedded systems based is a plus

Application Security Architect Resume Examples & Samples

Conducting Application Assurance Reviews which include key application security requirements
Consulting with development teams on Application Security Project Requirements
Evaluation of application security tools and technology
Conducting web vulnerability, static and dynamic code scanning
Identifying technology and control risks within each project
Other special projects as necessary

Senior Application Security Architect Resume Examples & Samples

Engage in the initial requirements definition (including analysis of threats and risks and alignment with Citi IS and Architecture standards)
Govern the execution of the security reviews performed by the SASA team including Secure SDLC testing requirements throughout the development lifecycle
Provide inputs in the final assessment deliverable and the resolution plans of any identified vulnerabilities/issues
Establish the vision for the group to take it to the next level and work with the key stakeholders to drive the SASA activities in our sector
Ideally a candidate who has worked for a similar organization, with 10 to 15 years of experience as application security consultant / penetration tester / security architect / group lead
Detailed familiarity with security hacking tools and techniques and technologies used for security testing
Experience in managing similar function in a mid-size companies
Exposure to senior management in championing the Secure SDLC related effort and driving execution

Application Security Architect Resume Examples & Samples

7-10+ years of experience (both a detailed technical knowledge and hands-on practice) working in security architecture, application security, and/or secure software development
Direct experience with secure application development and application security risk mitigation techniques--knowledge of the common application layer vulnerabilities and the ability to explain these risks to developers
Knowledge of tiered application architectures, web front-ends/server-side apps, application servers, and relational databases
Experience working in devops, continuous integration and Agile, including design of security solutions, including creating artifacts, models, and strategy presentations
Exposure to cloud-agile applications is a plus
Detailed understanding of and experience with application deployments in corporate environments
Experience leading or participating in setting the System Architectural strategy and defining the architecture roadmap
Ability to evaluate technical and functional specifications early within the software development process, and identify possible threats or areas of weakness
Thorough understanding of the standard network model and the risks present at each layer and the functions of network equipment such as switches, routers, firewalls, proxies, VPN, and load-balancers
Advanced knowledge of web architectures, web applications, APIs, mobile applications, desktop applications, Unified Communications (including VoIP and SMS), and the underlying technology of cloud infrastructure
Experience securing platform web APIs
Experience bringing security designs and secure development practices into Agile development environments, QA teams, and Product, through implementation (use cases, technical specifications, verification and testing methods, etc.)
Expert knowledge and implementation of secure application architectures, encryption technologies, cryptography and key management, and authentication and control of application permissions
Previous programming experience, and experience working with product managers, QA teams, and application developers
Solid technology background with the ability to challenge or validate technology decisions from a position of knowledge and experience

Application Security Architect Resume Examples & Samples

Define product security road-maps and collaborate across multiple product teams on security requirements and functions
Influence security posture by evaluating business strategies and requirements; researching information security standards and advising developers and products teams
Champion secure code development training
Partner with Enterprise Architecture working groups to develop and approve reference architectures and strategies
Integrate information security design requirements in the system development life cycle
Participate as a security consultant on significant technology projects
Assist with the creation of system security plans, outlining key controls to address risks
Assist with the creation of residual risk documentation for management acceptance
Integrate security requirements into contracts for outsourced services
Assist with the creation of information security policies, standards, procedures, and guidelines
Assist with the creation of secure configuration standards for software
Bachelor’s or advanced degree
Experience integrating security requirements based upon the OWASP Top 10/ASVS into releases via SDLC
Experience in information technology risk assessment, auditing, or information security assessments
Possesses at least one of the following security certifications CISSP, GIAC, CISM, or CEH

Application Security Architect Resume Examples & Samples

Refine and/or redesign the design and implementation of the technology or application to meet the organization’s changing business requirements
Refine and/or redesign the design or implementation of the technology to be more cost-effective, including the optimal selection of technologies, practices, and skills for implementation and usage success
Integrate each technology or application into the broader business and IT ecosystem within which it will operate
Create and maintain technology design and implementation deliverables, including architecture artifacts
Develop standards, best practices, and reference designs for the efficient use and reuse of the technology or application
Experience implementing technologies with enterprise-wide impact
Broad experience in IT Security and Security Principles
Related Security Certification(CISSP etc.)
Application Security Development expertise

Application Security Architect Resume Examples & Samples

The Application Security team is responsible for protecting Pearson’s commercial digital products and data, our learner’s data, and Pearson’s internal applications. By employing a blend of technology, developer training, test integration, and process automation, the Application Security team’s goal is to reduce our risks and provide ongoing Internet safe-havens for our learners
Within this team, the Application Security Architect is responsible for reviewing technology designs, and designing security controls and solutions, to reduce the risk to Pearson and its customers. They will help define the information security architecture and design for the enterprise. This is an expert/lead technical role
Partner with security architects, other functional-area architects, engineering, and security specialists to ensure adequate security solutions and controls are in place throughout all IT systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements
Based on your own strong development background with prominent web or mobile development languages and frameworks, provide security remediation advice to development and testing teams
Strong understanding of various development practices, and how to integrate security into those practices. Primarily an Agile shop, with some Waterfall
Providing training for development and QA teams on how to implement Pearson’s S-SDLC into their existing practices
Experience implementing and executing a Threat Model program for an enterprise
In-depth knowledge on common web application security flaws and secure coding practices and the ability to clearly explain security issues to project and development staff
Advocate use of OWASP Application Security Verification Standard (ASVS) across development teams, explain how it applies to application development teams, and why it matters
Serve as a leader by promoting security awareness, mentoring other team members, and staying up-to-date on current development methodologies (Agile/DevOps)
Understand HTTP, REST, SOAP, XML and JSON as it relates to APIs and AJAX
Understanding of AWS, Azure, and vSphere APIs, and how to align Pearson’s Application Security controls to those environments
Provide in-person training to development teams when necessary
5 years+ in enterprise software development
Strong experience with modern development languages and frameworks, with a passion to make security realistic, achievable and interwoven with the business fabric
Strong experience with Threat Modeling in an enterprise, not just theoretical
Strong oral, written, and presentation abilities - able to convey risk to all levels of the business, from C-level executives to operations and development teams
Strong experience in migrating enterprise companies from traditional data center infrastructure, application and data designs to hybrid or fully-cloud enabled practices
Strong understanding of web applications and architectures, relational and non-relational databases, and hardware architectures, and effectively applying the principles of information security to IT environments
Strong experience working in a multi-platform, multi-protocol, distributed enterprise computing environment
Strong understanding of modern application development and operational philosophies
Some understanding of governance frameworks such as ITIL and ISO 27001
Some project management experience: Able to assess needs, define objectives, identify resources needed to achieve objectives and begin implementation towards goal completion
Knowledge of incident response methodologies and technologies

Application Security Architect Resume Examples & Samples

Application and infrastructural architecture
Java Application Security Design & Development Experience
Secure Development/Code Principles
SOA
Spring Security
Oracle WebLogic Security
Oracle Identity and Access Management Develop and deploy security architecture designs and the information security management plan for the project
Work with the customer, end users, and stakeholders to define technical and functional security requirements
Identify security risks and the applicable controls

Application Security Architect Resume Examples & Samples

Drive deep integration of the Data Protection strategies data labeling, classification & control requirements into target state Java, .NET and python applications
Master’s degree, or demonstrated experience and delivery, in computer science, information security, engineering, or related discipline
7-10+ years of progressive experience in designing & developing foundational application components, core infrastructures and critical customer facing system development
Demonstrable experience of strong Java, .NET or python delivery of critical application frameworks
Demonstrable experience developing and delivering core crypto, access control or data management technologies
Demonstrated ability to investigate and learn new technologies and products
Active professional security certifications (e.g., CISSP or other similar industry qualification), open source project contribution or other continuous learning examples in the software development and security spheres
Near magical written and verbal communication skills
Possess a strong technology background with the ability to challenge or validate technology decisions from a position of knowledge and experience
Experience of working in a matrixed organization, achieving goals through partnership and collaboration

Application Security Architect Resume Examples & Samples

Maintain a high level of personal integrity, with the ability to professionally handle confidential matters and reflect an appropriate level of judgement as it pertains to security
Interface effectively with clients and their security teams
Design or implement methods to proactively discover risk in in-house products and services and track them to resolution
Bachelor’s degree in computer science or other relevant engineering field
One or more security certifications (CISSP, GISP, GSEC, CEH). Technical certifications a plus over general certifications
Strong desire to drive adoption of standard practices across the Financial Services Technology organization
Self-motivated and willing to learn

Application Security Architect Resume Examples & Samples

Perform security assessments of applications to identify technical control gaps and define security requirements to remediate identified risks
Communicate to the IT System Owner detailed remediation guidance
Articulate risks introduced by technical control gaps to the application’s Business Owner
Software architecture and development: the ideal candidate will have experience in designing and implementing enterprise applications
Programing languages: The ideal candidate will have experience with several practical programming languages such as Java, JavaScript and .net
Application security expertise: e.g. OWASP Top Ten
Ability to explain technology risks introduced by application vulnerabilities to a system’s Business Owner
Strong interpersonal skills, since the role involves working with developers and executives around the world
Thirsty to technical knowledge and new technologies
Bachelor Degree in Computer Science, Software Engineering, or equivalent
Experience with application security component development (e.g. authentication)
Basic understanding of IT networks

Application Security Architect Resume Examples & Samples

Expert in the various facets of application security and key contributor to the Application Security Program
Defines the application security guidelines and standards in alignment with security policies
Provide security architecture guidance and best practices in support of application development
Training and coaching application teams on secure coding practices and the usage of security tools
Aligns application security needs to existing enterprise services
Ensures security is embedded into the overall architecture and system design
Ensures the appropriate level of architecture and design artifacts are developed
Verifies security compliance via testing methodologies, scripts and testing
Assists in the creation of System Security Plans
Practical experience in the Information Security Architecture field, with emphasis on application security architecture and authorization approaches
Proven experience specially in Identity Access Management Solutions
Strong understanding of security architecture best practices, standards and frameworks
Experience in cloud and application-level security architecture
Advanced knowledge of web architectures, web applications, APIs, mobile applications, desktop applications
Detailed knowledge of web, mobile, and client application security vulnerabilities, attack methods, and countermeasures
Experience with a broad range of attack classes
Experience leading code reviews, penetration tests, or similar projects
Proven experience with relational database management systems specifically Oracle 10.1 and above
Expertise in Security Protocols such as IPSEC, SLL/TLS, SAML2.0
Expertise in Internet Protocols such as IP, TCP, UDP, DNS, HTTP/S
Software development and system-level programming C, C++, Java or equivalent
In depth understanding of NIST 800-53 and security controls
Understanding of industry regulations: HITECH/HIPAA, PCI, CJIC, IRS
Experience working in large, complex IT organizations
Minimum 10 years of experience directly in Information Technology
5-10 years of experience in Application Development
Minimum 5 years of experience directly related to Information Security
Bachelor’s degree in Computer Science, Information Technology, Engineering or a related technical field
CISSP certification or equivalent required

Application Security Architect, Director Resume Examples & Samples

Be SimCorp's foremost expert on information security both internally and externally
Engage with client representatives and partners to solicit input on security strategy and priorities
Liaise with Chief Security Officer to align activities and avoid duplication of cross-organisational activities
Engage with partners to drive our security priorities where we depend on others to fully secure a component

Enterprise & Application Security Architect Resume Examples & Samples

Solving key business problems and challenges by enabling Security architecture transformation, painting a picture of, and charting a journey from the current state to a “to-be” enterprise environment
Deep understanding of the concepts of the “New IT”, enabling flexibility and adaptability within our client organizations to advise or assist in delivering security solutions (e.g. enterprise security, cloud and cyber security) through Agile and Multi-Speed ITMethodologies
Overseeing the production and implementation of Security architectures solutions covering multiple cloud technologies, associated Infrastructure/ application architecture, development and operating models
Orchestrating security assessments to help to identify vulnerabilities in the IT landscape of our clients
Supporting our customers and Accenture delivery teams in the areas of Mobile Security, Infrastructure Security and Application Security, providing design input on IT solutions as an integral part of application development within our transformation projects
Called upon to apply your solid understanding of Security architecture and disruptive technologies, including the following
Deep experience within one or more of the Travel, Consumer Goods & Services, Industrial, Life Sciences and Retail industries
Experience managing large teams through complex situations, adapting quickly and helping others navigate change
Experience working through organizational change, developing and implementing creative solutions and closely partnering with clients to regularly confirm expectations are met and value delivered

IT Application Security Architect Resume Examples & Samples

Propose and conduct activities to keep the security of applications at IT Services in a good shape
Implement and maintain corporate security policies in methods and frameworks
Create and conduct security trainings, presentations and awareness sessions
Evaluate new technologies, standards and processes
Cooperate with stakeholders on security in methods, frameworks and solutions
Support internal customers with applying security during software development as well as in existing solutions
Conduct security audits, security assessments and vulnerability scanning
Very good communication and English skills
Very good knowledge of application security
Good knowledge about authentication and authorization solutions including federations based on SAML2 and OpenID Connect
Understanding of key concepts of information security
Understanding of key concepts of PKI and cryptography
Knowledge of SDLC (software development lifecycle)
Knowledge of security in network and infrastructure
Knowledge of Identity and Access Management
Knowledge of vulnerability scanning and pentesting
Knowledge of DBMS

Application Security Architect Resume Examples & Samples

Acquire a complete understanding of our company’s technology and information systems
Plan, research and design robust security architectures for upcoming software project
Be involved with the design public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures
Identify integration issues
Provide technical supervision for (and guidance to) software architect security team
Perform on-going security analysis and code review to improve software security
Troubleshoot and debug issues that arise in application security
Perform risk analyses on new application project designs
Contribute to all levels of the architecture
Maintain technical documentation related to Stubhub’s software security architecture
Consult team members on secure coding practices
Develop a familiarity with new tools and best practices in the industry
5+ years of Programming with multiple Languages such as
Interest in all aspects of security research and development
BS degree in Computer Science or related field, or equivalent

Application Security Architect Resume Examples & Samples

Work as the lead to design, implement and govern the overall security architecture of the products
Perform threat modeling, design reviews and code reviews as part of the development lifecycle
Design and deploy state-of-art technology to meet the business needs and interface with business units regarding technical planning and application security topics
Lead the implementation of proposed solutions while interfacing with the Project Management Office (PMO) to ensure the coordination, communication and successful delivery of projects
Leading the integration of security engineering automation tools, as SAST and IAST
Develop and maintain security procedures and guidelines for the products
Manage relationships and interactions with human resources, legal, customers and internal audit departments

Application Security Architect Resume Examples & Samples

Be SimCorp’s foremost expert on information security both internally and externally
Initiate and drive a secure by design architecture and software development program
Produce a comprehensive threat model across deployment models
Establish a prioritised roadmap of actionable security initiatives to harden existing code base further in light of future deployment models
You have a developer background so you can engage with developers
You are able to analyse a complex architecture to understand it through both documentation and by talking to technologists
You are able to break down large proposed investments in smaller sequenced and value-adding actionable chunks
Engage clients in a professional, loyal and courteous manner
Degree in computer science or related field
Ability to travel (up to 20%)

Web Application Security Architect Resume Examples & Samples

Focused on providing application security architecture strategies, requirements and recommendations
Demonstrated experience with automated and manual run-time assessments and automated / manual code review
Demonstrated ability to conduct threat modeling
Demonstrated experience with secure SDLC review and development, and secure code training for developers within an agile development environment
Experience with source code analysis scanners such as Ounce, AppScan, and Fortify
Requires excellent written and communication skills, and a demonstrated technical expertise in security, programming and application vulnerabilities
Demonstrated development knowledge of Java and .NET frameworks
Demonstrated knowledge of secure coding libraries, including custom solutions
Ability to develop guidance, metrics, and assessment tools for improving critical infrastructure security
Experience with penetration testing and breaking web frameworks
Experience with AWS services, Node.js, Docker, and Jenkins
Must be able to take code / development to development teams
Bachelor’s Degree or equivalent training and experience in programming, networking and security fundamentals, and application and database security
Two to five years of employment with significant responsibilities for enterprise application development, application security assessments, source code analysis, and/or application security vulnerability research, analysis and consulting
Experience in identifying application vulnerabilities, appropriate security related solutions, and strategies for risk mitigation

Principal Application Security Architect Resume Examples & Samples

Lead application security subject matter to product groups
Drive innovation In creating methods in the application security space
Develop secure software standards design and secure coding best practices
Build out team of highly capable application security architects to find defects using various methods
Develop, deploy and run a S-SDLC to compliment DEVOPS
Develop and Perform a repeatable dynamic and static code review
Develop, deploy and support repeatable self-service Threat Modeling process to be deployed across all product teams
Develop and deploy continuous security code training and education
Successful candidates will be security evangelists who can translate security concepts into language that is meaningful to many audiences, including business and technical leaders and individual contributors
Candidates must be able to approach application security from the perspective of risk management and avoid purely academic thinking about software security
Demonstrable ability to influence decision‐making processes at all levels of a large organization will be critical to success
Candidates must have strong leadership skills and be effective managers of highly technical individuals
Candidates must have excellent verbal and written communication skills, including experience speaking in public forums and writing/contributing to technical publications
Candidates should be familiar with waterfall and agile development processes and have experience integrating secure development practices into both models
The ideal candidate has experience writing and testing web applications and web services in the following programming languages: C/C++, Java, and JavaScript. The candidate should have familiarity with a variety of development and testing tools, including: Eclipse, GIT, GCC, JIRA, Subversion, Maven, ClearQuest/Case, Silk, FindBugs, HP/Fortify SCA, IBM AppScan, and HP WebInspect
The ideal candidate has experience working with cloud and virtualized environments such as AWS, Azure and VMware
The ideal candidate has experience working with automation script languages such as Puppet, Chef, Cloud Formation, etc
Candidates must be able to explain all vulnerabilities and weaknesses in the OWASP Top 10, WASC TCv2, and CWE 25 to any audience, and discuss effective defensive techniques
5+ years architecting / designing scalable, multi-tenant cloud applications delivered in a SaaS model
3+ years with cloud computing application implementations on Salesforce or NetSuite or Workday, AWS or Azure
10+ years of building scalable and highly available enterprise applications
Deep experience in AGILE development, SCRUM and Application Lifecycle Management (ALM) with programming experience in one or more of the following areas: Java or Ruby On Rails (ROR)
Be experienced with encryption, cryptographic standards, communication protocols and security standards
Ability to program in C, C++, C#, Objective C, Python, Java, PHP and/or ASM (x86)
Hands on experience in Cloud computing architecture, technical design and implementations including Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS) delivery models
Deep experience in Software design and development, Systems Operations / Management; Database architecture, Storage and IT Security
Virtualization and Containerization experience
Relational Database Design/Administration. Familiarity with relational and document based database design methodologies
Knowledge of Cloud Security design and architecture, FedRamp knowledge & FedRamp related certifications, CISSP or other Cloud Security related certifications
Candidates must have experience managing $1M+ budgets and planning multi‐year roadmaps
Previous experience with HIPAA, PCI, NIAP, and other compliance frameworks. CSSLP Certification preferred

Application Security Architect Resume Examples & Samples

Take strategic ownership of the application security architecture domain
Collaborate with security and technical domain experts, internal customers and key external partners on application security related initiatives, projects, and new technology development to identify risks, define and drive strategies, and recommend mitigating controls
Enable improved business product delivery velocity through improving information security alignment within all our development programs, reducing security incidents/rework, driving automation and integrated security processes
5+ years of information technology systems design and planning experience; in systems, applications, or architecture
3+ years of secure SDLC (System Development Life Cycle) methodologies experience
1+ year of design pattern experience
Experience influencing management on technical or business solutions
Experience with a wide application of technical principles, practices, and procedures to multiple applications or a component family
Ability to interact with all levels of an organization
Ability to influence and build relationships with LOB stakeholders, technology CIO leadership, external service providers, and architecture teams
Web application security vulnerability detection and mitigation experience
Knowledge and understanding of application or software security such as: static and dynamic code scanning, web application penetration testing, secure code review, secure static code analysis
Knowledge and understanding of monitoring the development of security vulnerabilities, threats, exposures, associated risk, and mitigating solutions
Knowledge and understanding of cryptography and key management
Knowledge and understanding of web services, SOA (Services Oriented Architecture), microservices, and API biased architectures
Experience in Agile Development, DevOps methodologies and patterns
Knowledge and understanding of diverse platforms and operating systems, including current and emerging technologies
Experience delivering sound security strategy to web applications
Experience in secure application development with one or more programming languages (Java, C/C++, C#, ObjC, etc.), scripting languages (JavaScript/JScript, ASP/JSP, Perl, etc.), runtime platforms and frameworks (J2EE, .NET, LAMP, etc.), distributed protocols (XML, SOAP, DCOM, RMI, etc.), and their unique security vulnerabilities
Experience in developing/deploying mobile applications (iOS, Android, Chromium)
Single-Page Applications and frameworks (AngularJS, NodeJS, etc.)
Familiarity with securing database platforms such as Oracle, SQL Server, DB2, and nonrelational databases (MongoDB, Hadoop, etc.)
Familiarity with cloud and virtualization technologies, including containerization and serverless deployments
Familiarity with software development/deployment methodologies including agile, Continuous Integration/Continuous Deployment (CI/CD), DevOps, and secDevOps
Familiarity with OWASP, NIST, ISO, PCI DSS, CLASP, CVE, WASC
Security certifications such as CISSP, CSSLP, ISSAP, ISSMP, GWEB, GSEC, GPEN

Senior Application Security Architect Resume Examples & Samples

Conduct threat modeling and architecture risk analysis, including Secure SDLC testing requirements throughout the development lifecycle
Ideally candidate who has worked for a similar organization, with extensive experience as application security consultant / penetration tester / security architect
In depth, hands-on understanding and application architectures and technology (including web applications, mobile technology, identity and access management)
Thorough understanding of industry and corporate technology standards for Information and Application Security
Detailed familiarity with code reviews and security hacking tools and techniques

Application Security Architect Resume Examples & Samples

Bachelor’s degree in computer science, information systems, computer engineering, or a related discipline preferred
7+ years of experience working in application security, and/or secure software development (both a detailed technical knowledge and hands-on practice)
Direct experience with secure application development and application security risk mitigation techniques
Knowledge of the common application layer vulnerabilities and the ability to explain these risks to developers
Knowledge of tiered application architectures, web applications, APIs, mobile applications, desktop applications, and the underlying technology of cloud infrastructure
Versed with recent versions of the OWASP Top Ten for web application security
Experience working in DevOps, continuous integration and Agile, including design of security solutions, including creating artifacts, models, and strategy presentations

Application Security Architect Resume Examples & Samples

5+ years of professional experience working in sole contributor security roles (security architecture, pentesting, security consultant or security minded developer.)
Ability to walk through a security vulnerability and recommend remediation
Understands how applications are built and can recommend where to apply security
Ability to listen to peers and business partners to understand and to help identify the optimal way to help
Self-starter with strong ability to work independently while maintaining effective communication to their leadership
Experience executing application testing tools (e.g. Zap, Burp, Checkmarx)
Bachelors in IT or related subject or relevant experience

Application Security Architect Resume Examples & Samples

Partner with developers, administrators and engineers to ensure secure design, development and implementation of Lending Club initiatives
Perform Architecture Risk Analysis of applications to identify deficiencies and provide practical solutions
You enable the the culture of security through the engineer community engagement
Lead and mentor developers to write secure software through activities like defensive programming techniques, usage of security frameworks and performing threat modeling
Document technical reports as needed to communicate security issues to senior leadership
Evaluate new security solutions to provide strategic recommendations in alignment with technology roadmap
Manage vulnerability discovery and remediation efforts from sources like static, dynamic, component, penetration testing and crowd-sourced web application testing approaches
Perform targeted penetration testing against mis-use cases for emerging applications and APIs
Become an authority in the Lending Club software stack to understand points of weakness and opportunities for better design patterns
Enable automated security testing at scale to measure vulnerability and report on risk across Lending Club applications
Deep understanding of encryption solutions and authentication patterns
7+ years in the field of software security
Experience implementing, running and maintaining tools and/or processes to reliably identify security issues such as SQLi, XSS, CSRF, and business logic flaws across large code bases (SAST, DAST, Penetration Testing, Security Unit Testing, Red Teaming etc.)
Knowledgeable regarding browser security controls (CSP, XFO, HSTS, etc.), OWASP Top 10, and authentication infrastructure (SAML, OAUTH)

Principal Application Security Architect Resume Examples & Samples

Excellent skills in security consulting and best practices
Expert in defining security architecture, requirements documents and strategy plans
Expertise in building application level Security, Risk and Privacy controls into cloud applications
Ability to assist developers in creating POC code for security control integrations
Ability to train and perform Security Vulnerability Assessments
Must possess significant knowledge of Application Security, Web Application Design, Information Security, Databases, Common Coding practices (both good and bad) and IT Infrastructure design
Should be able to lead diverse teams
Must possess good verbal communication and written documentation skills
Ability to learn new technologies or concepts quickly to adapt and adjust to the changing appsec landscape
Node.js
JQuery
Ajax
Json
Nginx
NoSql databases
MySQL
Reverse Proxies
Authentication/Authorization (CA SiteMinder a plus)
Amazon AWS
Web Development background

Application Security Architect & Analyst Resume Examples & Samples

Provide leadership to the information security team to develop skills, sources, and methods to provide the best information security capability to protect corporate assets from all information security threats, attacks, and exploitation
Mentor junior members of the information security team in standard practices and procedures for information security
Ensure systems are designed and maintained in a manner which are compliant with industry and government regulations
Identify, design, or assist with system and software architecture capabilities and patterns to ensure BWW assets are appropriately secure to mitigate threats
Research and evaluate proposed application architecture solutions for adherence to documented company standards, policies and regulatory responsibilities
Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues
Lead in the development of and provide guidance for architecture and design activities of new and existing applications, while also conducting application risk and impact assessments on new and existing applications
Plan security systems by evaluating and developing requirements for cloud security technologies
Assist in the development of Standard Operating Procedures (SOPs)
Conduct vulnerability testing for systems, networks, and applications; coordinate risk remediation efforts, and implement mitigating controls as needed
Provide risk analysis as needed to assist with configuration management
Experience with internal controls, risk assessments, business process and internal IT control testing or operational auditing against industry standards and regulations such as PCI and Sarbanes-Oxley
Demonstrated ability leading programs
Bachelor’s Degree in Computer Science, Information Security, Software Engineering or similar
Five years of experience in information security field

VP-application Security Architect Resume Examples & Samples

Should be able to pentest and/or perform vulnerability assessment on applications (web applications and thick client apps)
Should be able to understand Network level and Application level reference architecture and be able to advise implementation teams on secure design
Work with IT project community and to advise on application security standard controls and best practices
Work closely with other IT operation groups for identifying and remediation of systems with security issues
Review application, database, middleware and network architecture to highlight risks
1 - 3 years professional experience as an Application Developer
8 - 10 years of professional experience in an information security function for a financial, insurance, pharmaceutical, or similar commercial industry preferred
1 - 3 years professional experience in Risk Management, Governance and/or Strategy

Application Security Architect Professionals Resume Examples & Samples

Secure software design and application security testing and remediation
Application security strategies, with special care on digital trust and data security
Deliver consulting on assessments, building, testing and deployment of software development factories life cycle
Define and develop security controls, in order to comply to contractual requirements
Design and execute information security awareness, training and educational activities in the field of software security
Participate in strategic projects by designing and leading projects intended to improve the enterprise security posture
Work on improvements for provided security services including the development of new tools and supporting assets
Client delivery experience in Software Security Architecture, Application Security Testing, or an industry role with equivalent exposure
SDLC and DevOps knowledge

Senior Application Security Architect Resume Examples & Samples

Analyzes information security systems and applications and recommends and develops security measures to protect information against unauthorized modification or loss
Architect and design security solutions that enforce security consistently across internally developed, commercial-off-the-shelf and cloud-based applications
Perform security architecture reviews
Act as a subject matter expert to interpret the results from vulnerability scans (dynamic testing and static code analysis) and work with developers to remedy vulnerabilities
Monitor and triage vulnerabilities reported by vendors and researchers
Develop application security policy and standards/best practices
Conduct penetration testing of internally developed applications
Evangelize application security and secure development practices
Evaluate/apply new and emerging security technologies and solutions
Responsible for performing application vulnerability assessments
Review security logs on a regular basis to identify anomalous events and investigate possible breaches to the company’s security
Review code across a variety of programming languages
Assess SDLC processes and promote adoption of secure SDLC practices
Provide interpretation and remediation of vulnerabilities across a variety of applications and platforms
Explain and demonstrate vulnerabilities to application developers and/or QE teams as needed; provide recommendations for mitigation issue reports on assigned application and system scans
Conduct white box and black box security testing as needed to assess and validate identified application security vulnerabilities across variety of application
Monitor and track progress of found vulnerabilities and maintain a historical log
Participate in design reviews with Development teams as needed
Employ security code analysis tools and develop testing scripts and procedures
Perform secure code development training to Developers and relevant teams
Prepare and present reports and metrics to management
Assist in implementing appropriate changes as needed within application security to mitigate vulnerabilities and exposures
Provide recommendations for business and process improvement
Mentors other junior team members or cross-functional team members
Minimum of 5-10 years of work experience in web and mobile application security
Minimum of 5+ years of IT or software development experience
Experience with vulnerability scanning tools (e.g., Qualys, Nessus, NeXpose, Saint, Metasploit)
Experience with web application vulnerability scanning tools (e.g., NeXpose, NTO Spider, Burp Suite Pro)
Experience with static analysis tools (e.g., IBM Appscan Source, HP Fortify)
Practical knowledge of application security standards and compliance (e.g., OWASP, Sarbanes-Oxley act, HIPAA)
Solid knowledge of information security principles, web applications and a level of familiarity with malicious code and common techniques used by hackers
Knowledge of cloud-based infrastructures and how they affect security needs
Understanding of malware such as worms, viruses, trojans, etc
Ability to read and understand system data including security event logs , system and application logs
Solid understanding of enterprise wide technologies, including databases, operating systems, web applications, etc
Solid understanding of computer file systems and architecture
Ability to work with multidisciplinary and cross-functional teams
Ability to communicate technical concepts to nontechnical disciplines
Employs professional skepticism
Reliance on a risk-based approach
Proficiency with threat-modeling
Ability to negotiate towards a balanced, acceptable risk solution
Current on relevant application security and architectural trends
Excellent interpersonal, presentation and facilitation skills
A demonstrated commitment to high professional ethical standards and a diverse workplace

Application Security Architect Resume Examples & Samples

Work with Development team to remediate and improve quality of code as well as our agile development process
Manage security product evaluations to drive speed and protection for UTC and Business Unit Cloud environments
Work with project teams to ensure secure implementations are aligned to business requirements
Assist with defining our endpoint protection and privileged management implementation and strategy
Work with UTC and BU incident response teams to improve cyber defense capability
Responding to virus, malware, spam outbreaks as needed

Application Security Architect Resume Examples & Samples

Perform Source Code Review - Deep dive into the code to understand what is happening or validate if controls were implemented appropriately
Comfortable to review network architectures and operation system security settings
Security DevOps: Automation, Static Code Analysis

Application Security Architect Resume Examples & Samples

Assist with the development of architectural security strategy, including security technology standardization and modernization of IT infrastructure
Plays an advisory role in a broad range of projects to assess security requirements and controls and to ensure that security controls are implemented as planned
Investigate, conduct proof of concept and generate recommendations on key third-party components, such as application, network, security & voice infrastructure technologies
Mentors and develops security staff, as well as business and IT staff in adopting security techniques and security standards
Write security architectures, documentation, and strategic roadmaps for identity management, infrastructure, application, and network convergence technologies, and solution architectures
Serves as an information security expert and trusted advisor to partners in IT and the business
10+ years of hands on security experience
Experience with compiled and interpreted programs
Experience with application architecture components; for example: database systems, web servers, application servers, mainframes, and different types of middleware
Working knowledge of firewalls, routers, load balancers, switches, and networking principles
Experience with broad range of security tools and controls (endpoint protection, data loss prevention tools, security incident and event management, identity federation, web application firewalls, patch management, etc)
Experience with high level programming languages e.g, Java, C, C++, .NET (C#, VB)
Experience with web application development e.g. ASP.NET, ASP, PHP, J2EE, JSP, preferably J2EE
Hands-on experience with software security testing and common testing tools like Appscan, WebInspect, Metaspoit, Burp Suite, NMap, etc
Experience in providing a security advisory and consulting role to various technical and non-technical disciplines (business, application development, infrastructure)
Experience in the development of security policies
Experience and participation in compliance and audit against various standards (PCI DSS, SOX, FFIEC, FDIC, ISO 27001, etc)
Experience with Identity & Access Management principles and systems
Experience with defining and implementing security strategies and requirements for cloud and hybrid architectures
Excellent interpersonal, written, and oral communication skills, issue resolution, and negotiation
Demonstrated technical expertise in existing security and IT systems and an ability to keep pace with changing security and IT technologies
Alliance Data is an Equal Employment Opportunity employer

Application Security Architect Resume Examples & Samples

Lead the Application Security function for SC Johnson
Identify software security vulnerabilities and articulate their importance and relevance to our business
Propose and build new tools/infrastructure to make application security easy
Work with IT, Operations Staff, and Software Engineers to prevent and resolve security issues
Develop the strategic direction and manage all aspects of the Application Security program
Review source code, identify security vulnerabilities, perform risk analyses, and partner with development colleagues for remediation
Create and deliver relevant secure coding and application security training
Perform security assessments of existing architecture and make security recommendations for new deployments
Manage application security vendor engagements, and provide budgetary planning and analysis
Produce key performance indicator (KPI) metrics and trending as well as general reporting for the application security program
Create and maintain technical and policy documentation
Bachelor’s degree in Computer Science or Engineering
5+ years of Software Development Experience
5+ Years of work experience in application security and hands-on security assessments
8+ Years of SAP security experience
4+ Years Architecture experience
Master’s degree in Business or engineering
Leadership experience leading small to midsize teams
Consumer Good or Manufacturing experience

Application Security Architect Resume Examples & Samples

Adopting innovative security architectural approaches and reviewing security architectural designs
Creating, reviewing and enforcing security design patterns to support architecture
Strategically collaborating with DLG enterprise architecture to anticipate and plan for future DLG business requirements
Working collaboratively with Security Consulting and Security Enablement to support business change projects
Responsible for the Application Security Architecture within DLG
Responsible for defining the mid to long term application security strategy to protect the organisation from misuse and attack
Responsible for working with applications vendors (including web application firewall vendors) to ensure DLG and vendor security roadmaps are aligned
Responsible for ensuring that all application security designs, blueprints and artefacts are maintained and adhere to good practice
Responsible for identifying, recommending and approving application changes to achieve compliance with security policies and the enterprise security architecture blueprints and roadmaps
Responsible for understanding and assessing applications from both a technical and business function perspective
Responsible for developing and maintain relationships with various stakeholders, including Technology Services and IT Risk
Detailed in-depth application architecture skills and knowledge including presentation, application, messaging, data and network layers
Knowledge of architecture and security architecture good practice frameworks such as TOGAF and SABSA
In-depth knowledge of the OWASP top 10 vulnerabilities (exploitability, prevalence, detectability as well as understanding of business and technical impacts, attack vectors and relevant threat actors)
Experience working with application firewalls
Knowledge of enterprise grade technologies including operating systems, databases and web applications
Security accreditations such as CISM, CISSP, M.Inst.ISP, CGEIT, CISA by a recognised professional body are required
CREST CRT, CCT or other relevant and recognised qualification or certification is desirable
Architecture certifications such as TOGAF, SABSA, Zachman are required

Application Security Architect Resume Examples & Samples

Minimum of 3+ years in the following security functional areas: application security, authentication and authorization, identity and access management, dynamic application security testing, static application security testing, Middleware security, data security, security monitoring or SSO/2FA security, vulnerability management
Expertise in mitigating and addressing technology or application threat vectors
Expertise in building a defence in depth infrastructure security architecture that includes security controls across multiple technology stacks
Experience with Web Application Firewalls, Runtime Application Self-Protection (RASP), Reverse Proxies, and security assessment tools/methodology (network, systems, and application)
Solid knowledge and understanding of securing all major web server environments and cloud platforms based on OWASP top ten recommendations
Demonstrated knowledge of regulatory and statutory compliance requirements across industries
An Information Security and/or Web application security certification; e.g., SANS GWEB or GWAPT, CSSLP
Familiarity with dynamic web application vulnerability scanning tools and services
Familiarity with static code analysis tools and services
Familiarity with high level programming languages

Application Security Architect Resume Examples & Samples

Collaborating with all LoBs, create and actively maintain pipeline of Threat Models for Reference Architectures
Ensure that Threat Models are understood and adopted by LoB IT Risk teams
Work with Cyber Threat Intelligence teams to build, maintain Threat Catalog and feed this info into various tools and processes used by Threat Modeling team
Perform manual Security Architecture Risk Analysis (SARA) / Threat Model Reviews (TMR) of applications and assess their designs against known and emerging threats
Prepare risk report for each SARA / TMR assessment explaining attack surface, threats, flaws and provide remediation guidance to mitigate listed threats
Communicate findings and remediation guidance to development teams in a concise and succinct manner
Learn and support internal Threat Model Review and Threat Model Tools and infrastructure
Acquire and maintain a working knowledge of relevant laws, regulations, and JPMC policies, standards, and procedures

Application Security Architect Resume Examples & Samples

Support creation of a service for static code analysis based on HP Fortify to teams of Healthcare IT
Provide consultation in eliminating of weaknesses identified in accordance with current IT Standards by proposing changes from source code to software architecture
Continuous analysis of threats and weaknesses to develop improved software security concepts
Creation of application security guidelines and integration of those into the relevant operational and development processes
Continuous improvement of know how in the field of application security
Accompany/support the implementation of suggested measures to ensure that IT Security is part of the ongoing process

Application Security Architect Resume Examples & Samples

Ability to position and convey security as a business enabler is critical to this position
Strong Amazon Web Services (AWS) expertise with a security mindset
Must have demonstrated architectural & implementation skill sets to maintain, troubleshoot and deploy cloud security tools & technologies
A background in Network security architecture, IaaS, PaaS will be a plus
Solid background in general security practices around IDM, IAM, SAML, SIEM technologies
Understanding of cloud computing technologies, business drivers, and emerging computing trends
High-level communication skills to successfully translate business requests to technology and security requirements
Proven track record of driving decisions collaboratively and ensuring follow through

Senior Application Security Architect Resume Examples & Samples

Facilitate "table-top"/red-team/scenario analysis exercises in conjunction with other SME'sPlan the resolution of any identified vulnerabilities/issues
Bachelor’s Degree or equivalent work experience
As senior application security architect you will review our most critical applications and their technology stack from top to bottom. Therefore, we require in depth subject matter expert knowledge of application security, with thorough understanding of infrastructure and network security

Web Application Security Architect Resume Examples & Samples

Building strong relationships with technical teams
Providing coaching, mentoring and security expertise for all development teams
Ensuring that the security program is aligned with product strategy and objectives
Acting as the main technical point of contact for product teams as it relates to security and privacy
Conducting complete security lifecycle architecture and technical assessments, including but not limited to design requirements assessment, threat modeling, code review and risk assessment
Guiding security requirements and objectives for product features
Advising on secure architectures related to desktop applications, web applications, and cloud computing as it relates to core products and services
Quantifying residual product risk and identifying appropriate mitigation activities
Working with product owners, developers, penetration testers and other security architects on efforts to mitigate identified risks in existing products
Defining high quality standards for application security
Educating developers on secure coding principles and security best practices
Overseeing integration of automated security tools to drive secure product as it is developed
Building a standardized set of security product requirements and design patterns into product and service offerings
Representing the company within the security community and with customers on topics related to the security of Datto’s products and services
Recruiting, selecting, and mentoring a team of security professionals to support the security function as the company continues its growth and expansion
Bachelor’s degree in computer science, software engineering or equivalent experience
At least 5 years of security design and architecture experience
Experience with compiled, interpreted and scripting languages (PHP, Symfony, C and Python)
Knowledge of current and emerging security techniques for exploiting security vulnerabilities
Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among project stakeholders in a fast-paced environment
Driven to influence software security across an organization
50% Conducting complete security lifecycle architecture and technical assessments, including but not limited to, designing requirements assessments, threat modeling, code review and risk assessments
25% Advising on secure architectures related to desktop applications, web applications, and cloud computing as it relates to core products and services
25% Authoring remediation and risk mitigation strategies for DevOPs team
Familiarity with industry baselines including OWASP and SANS Top 25
Knowledge of exploitation methods and mitigation strategies
CISSP, Security+, CCNA Security, GIAC or other appropriate certifications

Application Security Architect Resume Examples & Samples

Directing the architecture for security testing as part of a continuous integration process
Performing application vulnerability assessments and penetration tests
Performing code review across a variety of programming languages
Selecting and maintaining security testing tools for evaluating developed code
Writing custom code for various ad-hoc security projects
Training development teams on writing secure code, methods of identifying and fixing vulnerabilities, and development strategies that minimize risk
Experience (minimum 5 years) in software development
Experience (minimum 5 years) programming in javascript, node.js, java, C, C#, .Net, PHP, Python, Ruby
Experience (minimum 5 years) in application penetration testing
Knowledge of and ability to identify vulnerabilities in applications written in the above languages
Knowledge and ability to assess web and non-web applications
Knowledge of secure coding methodologies including OWASP Secure SDLC, MS-SDLC,
Ability to write scripts and programs to perform automated security tests
Experience with dynamic security testing tools such as BurpSuite, ZAProxy, HP Webinspect, Veracode
Experience with static testing tools such as CheckMarx, Klockwork, Coverity
Knowledge of CI/CD tools such as CircleCI, Chef, Consul, Artifactory, git
Knowledge of AWS environments and development within them including CloudFormation
Knowledge of secure methodologies and programming concepts including cryptography, authentication models and standards, secure libraries, and methods to evaluate their applicability to business and development problems
Experience, knowledge and presence to teach and train developers on secure coding and development techniques
Pro-active and self-motivated including willingness to reach out to development teams and stakeholders to discuss issues and identify areas needing assistance

Application Security Architect Resume Examples & Samples

Develops and applies JDA security policies and procedures to ensure JDA applications are available for customer use and interaction
Provides guidance to development teams to assist them in meeting application security policies
Collaborates with information security, product development teams, customer support, and JDA customers to resolve security related issues/concerns
Responds to customer queries concerning the security analysis of JDA Products
Supports the sales organization by providing responses to application security related questions in RFP's and customer queries
Manages the utilization and implementation of corporate application security testing tools and processes
Analyzes output from product software security scans and advises development teams on security vulnerabilities and recommends prevention / mitigation methodologies
Manages the relationship with security partners and vendors and coordinates external security testing for JDA products
Analyzes results of external testing and provides guidance to product teams on issue mitigation approaches
Briefs senior management on the state of product security
Works with internal and external resources to manage the development and implementation of application security training for the organization
Manages the rollout of strategic corporate application security initiatives and application changes
Escalates and notifies management of security policy/procedure discrepancies and recommends changes to correct deficiencies
Generates reports for audit control purposes
Provides appropriate guidance/training to associates on JDA application security processes, procedures, applications and systems to ensure JDA meets or exceeds expected customer satisfaction levels
Reviews application security logs to monitor for anomalous activities and guides development teams in the necessary corrections
Works with internal and external resources to resolve application security issues within prescribed time frames
Mentors and coaches application security champions within the Development and R&D organizations
Is an active member of the Technology Review Committee and provides security review and analysis for third party component requests
A Bachelor’s Degree in Software Security, Computer Science, Computer Engineering, Computer Information Systems, Information Security and work with a minimum 8 years’ experience
Certifications required: CEH
Certifications preferred: CISSP/ CISSP-ISSAP/ CISM/CSSA/GSEC/GCIH/GCIA, OSWE
Expert knowledge of application security scanning tools
Significant knowledge on best practices for application security issue prevention
Experience in working with customers to identify / resolve security concerns in application software
Demonstrated experience developing security policies and procedures
Extensive experience in execution and analysis of application security scans and recommending corrective action
Experience in briefing senior management on security related status / concerns
Demonstrated ability to model professional integrity and behavior in a multicultural environment

Download Application Security Architect Resume Sample as Image file

Related Job Titles

Application Security Analyst Resume Sample

Information Security Architect Resume Sample

Security Architect Resume Sample

Senior Application Security Engineer Resume Sample

Application Security Specialist Resume Sample

Principal Security Architect Resume Sample

Security Solutions Architect Resume Sample

Lead Security Architect Resume Sample

Security Solution Architect Resume Sample

Enterprise Security Architect Resume Sample

Safety & Security Manager Resume Sample

Application Security Resume Sample

Browse More

Application Security Architect Resume Samples

The Guide To Resume Tailoring

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Resume Builder

15 Application Security Architect resume templates

Read our complete resume writing guides

How to Tailor Your Resume

How to Make a Resume

How to Mention Achievements

Work Experience in Resume

50+ Skills to Put on a Resume

How and Why Put Hobbies

Top 22 Fonts for Your Resume

50 Best Resume Tips

200+ Action Words to Use

Internship Resume

Killer Resume Summary

Write a Resume Objective

What to Put on a Resume

How Long Should a Resume Be

The Best Resume Format

How to List Education

CV vs. Resume: The Difference

Include Contact Information

Resume Format PDF vs Word

How to Write a Student Resume

Application Security Architect Resume Examples & Samples

Application Security Architect Senior Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Senior Application Security Architect Resume Examples & Samples

Advisory Manager Cyber Security Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Technology Technology Risk Application Security Architect Resume Examples & Samples

Advisory Manager Cybersecurity Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Senior Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Senior Web Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Senior Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect, Director Resume Examples & Samples

Enterprise & Application Security Architect Resume Examples & Samples

IT Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Web Application Security Architect Resume Examples & Samples

Principal Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Senior Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Principal Application Security Architect Resume Examples & Samples

Application Security Architect & Analyst Resume Examples & Samples

VP-application Security Architect Resume Examples & Samples

Application Security Architect Professionals Resume Examples & Samples

Senior Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

Application Security Architect Resume Examples & Samples

How to Make
a Resume

50 Best
Resume Tips

200+ Action
Words to Use

Internship
Resume