Oferta pracy

Application Security Manager

Accenture TechnologyO firmie

  • śląskie

  • Ważna jeszcze 22 dni
    do: 18 sie 2021
  • Rekrutacja zdalna
  • Umowa o pracę
  • Pełny etat
  • Menedżer
Application Security Manager
Accenture plc is a multinational professional services company that provides services in strategy, consulting, digital, technology and operations. A Fortune Global 500 company, it has been incorporated in Dublin, Ireland, since 1 September 2009. In 2018, the company reported net revenues of $39.6 billion, with more than 459,000 employees serving clients in more than 200 cities in 120 countries.
 
Cybersecurity team helps clients maintain the highest quality and secure systems. Our experts help clients identify gaps in their IT security, analyze their business impact, design and implement comprehensive security solutions using modern technologies.
 
The future Manager will have the opportunity to enrich Cybersecurity area by creating an Application Security team and gathering the most important competences, servicing Polish and global clients. They will be involved in the development and delivery of multiple management consulting projects for clients in Poland and Europe. It involves a wide range of activities from capability assessment, through architecture and tools deployment and configuration up to operations and maintenance of relevant processes and technologies.
 
KEY RESPOSIBILITIES:

    • Building a strong team by selecting the best competencies and talents.

    • Coordinate teams, projects and participate in discussions with clients on daily basis.

    • Participate in business development activities (including responses to RFP/I).

    • Design & Implement secure software development life cycle solutions based on various tools.

    • Contribute to tool evaluation, selection and recommendation internally and to clients.

    • Provide advisory to different groups (Technology, Developers, Digital Transformation, etc.).

    • Participate in execution of training program for different teams.

    • Define secure software development life cycle for large projects and teams.

    • Define applications security architecture elements.

    • Define documentation of security requirements for applications (web, mobile, host, SOA, etc.).

    • Assistance with KPIs and KRIs related to security in applications.

    • Coordinate the construction of labs and PoC to improve project and service delivery.

    • Work with senior management on defining roadmaps, needs and provide short and mid-term forecasting.

    • Collaborate with clients to define best approach to maximize the security posture.

    • Contribute to R&D activities as a Subject Matter Expert & internal professional community.

 

What we expect from you:

  • Master Degree in Computer Science, Telecommunications or Information Security.
  • Knowledge of penetration testing and security testing
  • Knowledge of good modern cryptographic practices (PKI, RSA, others)
  • Knowledge of popular attack methods (XSS, CSRF, SQL injection, code injection, etc)
  • Knowledge of Content Security Policy, CORS. authorization, authentication, session management.
  • Knowledge and experience in backend programming and developing.
  • Knowledge and experience in working with IT/application security systems, e.g. IDS / IPS, WAF, URL filtering, others.
  • Certifications such as CSSLP, CISSP, CISA, etc. are preferred.
  • Certifications from pentesting vendors (OSCP, CEH,…) are preferred.
  • SAST & DAST tools related education and certificates are beneficial.
  • At least 3 years of experience in the Application Development (DevOps).
  • At least 1 year of experience in Application Security Testing.
Skill requirements:
  • Passion for Security, Agile, and DevOps.
  • Experience in management and definition of security in the software development lifecycle (SDLC).
  • Experience in software development and SDLC in Java, Python, C#, etc…
  • Experience with Automation in testing or orchestration Selenium, Maven, Ant, Msbuild, Npm, Yarn, Jenkins, Team City, etc.
  • Knowledge of conducting security checks (static and dynamic code analysis, vulnerability analysis in applications and penetration tests, security component analysis).
  • Understanding or virtualization and container technologies (Docker, Kubernetes, OpenShift).
  • Experience with OWASP Testing Guide v3 / 4 and OWASP TOP 10.
  • Knowledge of securing APIs.
  • Experience in Web and/or Mobile applications and common vulnerabilities.
  • Knowledge of security in micro-services is beneficial.
  • Client focus.
  • Communications skills including the ability to understand client process in any area in detail.
  • Undeniable leadership skills, the ability to lead large teams (50+), also dispersed.
  • Business writing skills (capturing needs and writing it down on formal documents).
  • Reliable and with attention to detail.
 

Our offer:

  • Stable employment conditions based on an employment contract
  • Private medical care and life insurance and employee share program.
  • Access to the MyBenefit platform (possibility of using a wide range of products and services, including the Multisport card and the lunch card).
  • Individual support of a Career counselor and a specific path of professional development, as well as the possibility of a session with a Coach.
  • A wide training package (soft and technical training offer, access to the e-learning platform, possibility of co-financing courses and certification)
  • Participation in the implementation of projects on a global scale for the largest international companies from Fortune500 using the latest technological solutions and tools.
  • Employee Assistance Program - free support in one-time legal, financial and psychological consultations.
  • Paid employee referral program
Accenture is a global professional services company with leading capabilities in digital, cloud and security. Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Interactive, Technology and Operations services—all powered by the world’s largest network of Advanced Technology and Intelligent Operations centers. Our 514,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. We embrace the power of change to create value and shared success for our clients, people, shareholders, partners and communities. Visit us at www.accenture.com.

When applying please enclose the below statement:

"I hereby consent to the processing of my personal data by Accenture sp. z o.o. with its registered seat in Warsaw (00-121), at ul. Sienna 39, NIP 526-00-15-900 (Data Controller), in accordance with the Act of May 10, 2018 on the Protection of Personal Data (Journal of Laws of 2018, item 1000) and the Regulation on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (Data Protection Directive), necessary to carry out the recruitment process by Accenture . At the same time, I declare that I provide my personal data completely voluntary. I also declare that I have been informed about my right to withdraw my consent or object to processing of data, request access to them, rectification, deletion, limitation of processing and their transfer, at any time and the right to lodge a complaint to the data protection supervisory authority."

Accenture does not discriminate employment candidates on the basis of race, religion, color, sex, age, disability, national origin, political beliefs, trade union membership, ethnicity, denomination, sexual orientation or any other basis impermissible under Polish law.

Accenture is a global professional services company with leading capabilities in digital, cloud and security. Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Interactive, Technology and Operations services—all powered by the world’s largest network of Advanced Technology and Intelligent Operations centers. Our 514,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. We embrace the power of change to create value and shared success for our clients, people, shareholders, partners and communities. Visit us at www.accenture.com.
Application Security ManagerNumer ref.: R00026419
Accenture plc is a multinational professional services company that provides services in strategy, consulting, digital, technology and operations. A Fortune Global 500 company, it has been incorporated in Dublin, Ireland, since 1 September 2009. In 2018, the company reported net revenues of $39.6 billion, with more than 459,000 employees serving clients in more than 200 cities in 120 countries.
 
Cybersecurity team helps clients maintain the highest quality and secure systems. Our experts help clients identify gaps in their IT security, analyze their business impact, design and implement comprehensive security solutions using modern technologies.
 
The future Manager will have the opportunity to enrich Cybersecurity area by creating an Application Security team and gathering the most important competences, servicing Polish and global clients. They will be involved in the development and delivery of multiple management consulting projects for clients in Poland and Europe. It involves a wide range of activities from capability assessment, through architecture and tools deployment and configuration up to operations and maintenance of relevant processes and technologies.
 
KEY RESPOSIBILITIES:

    • Building a strong team by selecting the best competencies and talents.

    • Coordinate teams, projects and participate in discussions with clients on daily basis.

    • Participate in business development activities (including responses to RFP/I).

    • Design & Implement secure software development life cycle solutions based on various tools.

    • Contribute to tool evaluation, selection and recommendation internally and to clients.

    • Provide advisory to different groups (Technology, Developers, Digital Transformation, etc.).

    • Participate in execution of training program for different teams.

    • Define secure software development life cycle for large projects and teams.

    • Define applications security architecture elements.

    • Define documentation of security requirements for applications (web, mobile, host, SOA, etc.).

    • Assistance with KPIs and KRIs related to security in applications.

    • Coordinate the construction of labs and PoC to improve project and service delivery.

    • Work with senior management on defining roadmaps, needs and provide short and mid-term forecasting.

    • Collaborate with clients to define best approach to maximize the security posture.

    • Contribute to R&D activities as a Subject Matter Expert & internal professional community.

 

What we expect from you:

  • Master Degree in Computer Science, Telecommunications or Information Security.
  • Knowledge of penetration testing and security testing
  • Knowledge of good modern cryptographic practices (PKI, RSA, others)
  • Knowledge of popular attack methods (XSS, CSRF, SQL injection, code injection, etc)
  • Knowledge of Content Security Policy, CORS. authorization, authentication, session management.
  • Knowledge and experience in backend programming and developing.
  • Knowledge and experience in working with IT/application security systems, e.g. IDS / IPS, WAF, URL filtering, others.
  • Certifications such as CSSLP, CISSP, CISA, etc. are preferred.
  • Certifications from pentesting vendors (OSCP, CEH,…) are preferred.
  • SAST & DAST tools related education and certificates are beneficial.
  • At least 3 years of experience in the Application Development (DevOps).
  • At least 1 year of experience in Application Security Testing.
Skill requirements:
  • Passion for Security, Agile, and DevOps.
  • Experience in management and definition of security in the software development lifecycle (SDLC).
  • Experience in software development and SDLC in Java, Python, C#, etc…
  • Experience with Automation in testing or orchestration Selenium, Maven, Ant, Msbuild, Npm, Yarn, Jenkins, Team City, etc.
  • Knowledge of conducting security checks (static and dynamic code analysis, vulnerability analysis in applications and penetration tests, security component analysis).
  • Understanding or virtualization and container technologies (Docker, Kubernetes, OpenShift).
  • Experience with OWASP Testing Guide v3 / 4 and OWASP TOP 10.
  • Knowledge of securing APIs.
  • Experience in Web and/or Mobile applications and common vulnerabilities.
  • Knowledge of security in micro-services is beneficial.
  • Client focus.
  • Communications skills including the ability to understand client process in any area in detail.
  • Undeniable leadership skills, the ability to lead large teams (50+), also dispersed.
  • Business writing skills (capturing needs and writing it down on formal documents).
  • Reliable and with attention to detail.
 

Our offer:

  • Stable employment conditions based on an employment contract
  • Private medical care and life insurance and employee share program.
  • Access to the MyBenefit platform (possibility of using a wide range of products and services, including the Multisport card and the lunch card).
  • Individual support of a Career counselor and a specific path of professional development, as well as the possibility of a session with a Coach.
  • A wide training package (soft and technical training offer, access to the e-learning platform, possibility of co-financing courses and certification)
  • Participation in the implementation of projects on a global scale for the largest international companies from Fortune500 using the latest technological solutions and tools.
  • Employee Assistance Program - free support in one-time legal, financial and psychological consultations.
  • Paid employee referral program
Osoby zainteresowane prosimy o przesyłanie aplikacji klikając w przycisk aplikowania.

When applying please enclose the below statement:

"I hereby consent to the processing of my personal data by Accenture sp. z o.o. with its registered seat in Warsaw (00-121), at ul. Sienna 39, NIP 526-00-15-900 (Data Controller), in accordance with the Act of May 10, 2018 on the Protection of Personal Data (Journal of Laws of 2018, item 1000) and the Regulation on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (Data Protection Directive), necessary to carry out the recruitment process by Accenture . At the same time, I declare that I provide my personal data completely voluntary. I also declare that I have been informed about my right to withdraw my consent or object to processing of data, request access to them, rectification, deletion, limitation of processing and their transfer, at any time and the right to lodge a complaint to the data protection supervisory authority."

Accenture does not discriminate employment candidates on the basis of race, religion, color, sex, age, disability, national origin, political beliefs, trade union membership, ethnicity, denomination, sexual orientation or any other basis impermissible under Polish law.

Ogłoszenie archiwalne