This role works closely with the development teams to verify that our applications satisfy the defined security criteria, supporting the organization on the secure design of our gaming platform and conducting reviews of the developed applications, while improving the automation of security in our development lifecycle.
Primary Responsibilities:
- Provide technical leadership and guidance on application security best practices, methodologies, and technologies. Serve as a trusted advisor to development teams, architects, and stakeholders, offering insights and recommendations to enhance the security posture of applications.β
- Design and review security architectures for applications, ensuring the implementation of effective security controls and countermeasures. Conduct threat modelling exercises to identify potential security risks and vulnerabilities early in the development lifecycle.β
- Conduct in-depth security assessments, code reviews, and penetration testing of applications to identify and mitigate security vulnerabilities. Utilise industry-standard tools and methodologies to assess the security posture of applications and provide actionable recommendations for remediation
- Develop and implement security tools, scripts, and automation workflows to streamline security testing, monitoring, and compliance activities for applications. Leverage scripting languages and development frameworks to create custom tools tailored to specific security requirements.β
- Promote a culture of security awareness among development teams and stakeholders through training sessions, workshops, and knowledge-sharing initiatives.β Educate personnel on secure coding practices, threat mitigation techniques, and compliance requirements.β
- Collaborate closely with development teams, Product, IT operations, project managers, and other stakeholders to integrate security into the software development lifecycle. Provide guidance and support to ensure security considerations are addressed throughout the application development process.β
- Proactively identify opportunities for improvement and optimization of security controls, processes, and technologies.β
- Stay abreast of emerging threats, vulnerabilities, and security trends in the application security landscape. Conduct research and analysis to evaluate new security technologies, techniques, and methodologies for potential adoption and integration into security practices.β
Occasional Responsibilities:
- Travel to Development centres