Application Security Architect - Permanent, Dublin City Centre + Hybrid

AppSec Architect

Talentspot is working exclusively to support our highly-regarded capital markets customer. Having been in business for 50 years, they are considered a Wall Street heavyweight for their scale, innovation and investment returns. Markets they operate in include asset management, credit risk, hedge funds, fund management and private equity.

COMPANY OVERVIEW

They have experienced significant growth over the last few years, and are investing in a wide-scale modernisation of both their technology stack and the way they approach managing that technology. Their globally distributed technology portfolio includes complex, native applications, highly extensible third-party applications, Big Data/EDWH, and reporting/insights solutions - deployed both in on-premise data centers and within public cloud environments globally.

OPPORTUNITY OVERVIEW

They are seeking an experienced Application Security Architect to join the team. The Application Security Architect will be responsible for the design and implementation of security controls and best practices across their software development lifecycle.

ROLE & RESPONSIBILITIES

• Lead the design and implementation of security controls throughout the SDLC, including threat modeling, secure design reviews, and security architecture reviews.
• Collaborate with development, infrastructure, and DevOps teams to integrate security into CI/CD pipelines and automate security testing and validation processes.
• Conduct security assessments and risk analyses of applications, identifying vulnerabilities and recommending remediation strategies.
• Define and enforce security policies, standards, and guidelines for application development, deployment, and maintenance.
• Provide technical guidance and mentorship to development teams on secure coding practices, security architecture, and threat mitigation techniques.
• Evaluate and recommend security tools and technologies to enhance the security posture of their applications and on-prem/cloud infrastructure.
• Remain up-to-date with industry trends, emerging threats, and security best practices, and incorporate these into the firm's security program.

SKILLS & EXPERIENCE

• 5+ years' experience in application security, with a focus on designing and implementing security controls in complex software environments.
• 2-3+ years in a similar position at AppSec Architect level
• Hands-on experience with security testing tools and methodologies, including static application security testing (SAST), dynamic application security testing (DAST), and software composition analysis (SCA).
• Excellent understanding of secure coding practices, cryptographic protocols, authentication mechanisms, and access control models.
• Experience with cloud security, container security, and Infrastructure as Code (IaC) security.
• Knowledge of industry standards and regulations, such as OWASP Top 10, CIS Benchmarks, and GDPR.

• Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and stakeholders.
• Act as an ambassador, thought leader and SME for AppSec across the company.
• Financial markets experience is desirable but not essential, though a keen interest in capital markets will be a very useful attribute to succeed in this position.
•  

You must be eligible to live and work in Ireland without sponsorship.