Vice President, Application Security Engineer
Vice President, Application Security Engineer
Vice President, Application Security Engineer
CLS Group
The Vice President, Application Security Engineer at CLS will lead application security initiatives within the IT Security department. The role focuses on identifying and mitigating security vulnerabilities in applications and APIs, driving secure coding practices, and collaborating with development teams to enhance security throughout the software development lifecycle. CLS is a key player in the global FX ecosystem, providing trusted settlement infrastructure and risk management solutions.
Qualification
- Proven experience in application security, with a focus on vulnerability management and secure coding practices
- Strong understanding of security frameworks and methodologies
- Experience with security scanning tools (DAST, SCA) and threat modeling
- Ability to collaborate effectively with development teams and communicate security concepts clearly
- Experience in leading security initiatives and programs
- Knowledge of regulatory requirements and compliance standards related to application security
Responsibility
- Perform Application Security scans (e.g. DAST and SCA) on applications and APIs to identify security vulnerabilities and weaknesses
- Triage security findings and collaborate with development teams to prioritize and remediate identified vulnerabilities
- Drive threat modelling as a standard part of the SDLC, and develop and maintain threat models for critical applications
- Drive the Security Champions program, and define and promote secure coding practices, patterns, and standards across development teams
- Conduct security reviews and provide guidance on security requirements for new features and projects
- Assist in the analysis, selection and rollout of new security tools and technologies
