Standard Bank Group Job Vacancy For Specialist, Application Security



Our website is made possible by displaying online advertisements to our visitors.
Please consider supporting us by disabling your ad blocker.


Standard Bank Group Job Vacancy For Specialist, Application Security





A Must Read Article: 10 checks to identify fraudulent or scam job offers

Free Tuition Scholarships to Study in UK, US etc.

Click here to join us on Telegram

1. Patiently scroll down and read the job description below.

2. Scroll down and find how to apply or mode of application for this job after the job description.

3. Carefully follow the instructions on how to apply.

4. Always apply for a job by attaching CV with a Cover Letter / Application Letter.


The Application Security Specialist will be tasked with identifying vulnerabilities in applications developed either in-house or by externally and their supporting infrastructure while assisting the software engineers and IT teams in the remediation efforts as well as researching threats and attack vectors that impact web, enterprise and mobile applications

 

Key Responsibilities/Accountabilities

Penetration Testing and Vulnerability Assessment

  • Perform penetration testing and vulnerability assessment on web, enterprise and mobile applications.
  • Assist software engineering teams with the configuration, tuning and operation of SAST and DAST tools, and their integration into the development process.
  • Help to validate and interpret SAST, DAST and penetration test findings, demonstrate identified vulnerabilities, assess risks, evaluate possible fixes, and verify successful remediation.
  • Help to develop and collect metrics to measure the success of the application security program.
  • Assist with the incident response procedures.

 

Policy and Security Awareness Training

  • Contribute to the development/delivery of awareness training and general Information Security education.
  • Assist in creating and training for software engineering team members on secure code development, and other security literacy topics.

 

Access Controls Review

Perform periodic reviews on rules and processes used for granting and revoking access to applications.
Reporting

  • Report the results of technical IT Security assessments with conclusions, recommendations for improvement, follow-up status to Manager – Information Security. Incident Response Management
  • Assist in investigating all identified security breaches, or concentrated attempts at breaching security controls.
  • Investigate reported breaches of security, potential abuses or intrusions or interference with the bank’s infrastructure and coordinate mitigation or responses as needed for the purpose of ensuring the bank’s sensitive data is kept secure 

 

Research and Development

  • Research threats and attack vectors that may impact applications and infrastructure. Stay up-to-date with current offensive and defensive tactics, techniques and procedures.
  • Research and report on emerging cyber threats and coordinate proactive internal counter measures

 

Key performance measures

  • Number and severity of vulnerabilities found in web applications.
  • Number of resolved security vulnerabilities
  • Number of security flashpoints identified
  • Compliance level of country application security
  • Number of awareness sessions held with software engineers

Number of security reports to senior management and the Board
IT Audit rating by Internal Audit, Routine Control, and external audit

 

Important Relationships

Maintain a supportive, co-operative working relationship with software development engineers, business unit heads, Risk, Routine Control, and Internal Audit departments.

 

Problem solving, planning and decision making

  • Required to draw on information security expertise to assess issues and problem areas, and advice on the best solution(s).
  • Able to take the initiative within limits of authority.
  • Required to follow laid-down policies and procedures at all times.

 

Planning

  • Required to develop a strategic security plan, with supporting short-term plans for daily security activities and periodic assessments/reviews.
  • Able to deal efficiently with work volumes while remaining focused on priorities.
  • Ability to note, document and follow up on issues at all times.

 

Preferred Qualification and Experience

Experience in writing and testing web applications and web services in the following

  • programming languages; C/C++, Java, JavaScript
  • Should be familiar with variety of development and testing tools including Eclipse, GIT, GCC, JIRA, Subversion, Maven, HP/Fortify SCA, IBM AppScan
  • A minimum of 2 years experience in Web Application development and a minimum of 1-year experience in Information security/technology risk reviews across enterprise operating systems, databases, applications and networks.

 

Knowledge/Technical Skills/Expertise

  • A degree in Computer Science, Management Information Systems or Computer Engineering
  • Relevant certifications include: Certified Ethical Hacking (CEH); Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager(CISM)
  • Candidates must be able to explain all vulnerabilities and weaknesses in the OWASP Top 10, WASC TCv2, CWE 25 to any audience to discuss effective defensive techniques.

 

« Go back to the jobs list


RELATED JOBS >> CLICK A JOB BELOW TO VIEW & APPLY



ADVERTISEMENT

CONTINUE READING BELOW


Before you look at how to apply for the job, take a look at the recommended career resources and guides we have for you. It is always good to prepare yourself for your dream job. Carefully read the articles and proceed to apply.

How to Apply

Click here to apply >>

Disclaimer

  • Do not pay any fee to any Recruiter.
  • The Recruiter may amend, delete or expire jobs at any time without notification.
  • The Recruiter reserves the right not to proceed with filling the position.
  • An application will not in itself entitle the applicant to an interview.

FIND CURRENT JOBS IN GHANA 2024 TODAY

JobSearch Ghana is your most reliable website for latest jobs in Ghana today. If you are interested in getting genuine and reviewed job vacancies in Ghana from the best companies, then you are in the right place. Browse For Graduate Jobs, Government Recruitments & More. You can find current jobs in Ghana today on LinkedIn, Glassdoor, Graphic, Job Web Ghana here

TOP CAREER ARTICLES FROM EXPERTS

Job search is not an easy journey especially for jobs in Ghana 2024. That is why we have engaged experts to write seasoned articles to guide your job search in Ghana. We cover interviews, cover letters, CVs, aptitude tests, workplace life, entrepreneurship, personal finance and more. Check out our career articles page today!

Top