Qualifications:

A Bachelor's degree in Computer Science, Information Technology, Engineering, Information Security, Cybersecunty, or a related field is required

• CISSP or CCSP or CSSLP certification is Mandatory.

Experience

Minimum of 6-8 years of relevant work experience in cybersecurity architecture, engineering, application secunty, or a similar field. The candidate must possess the ability to perform threat modeling for applications.

Responsibilities

• Conduct threat modeling and architectural assessments of applications to encompass all aspects of information security, ensuring security by design

Document identified threats and provide corresponding mitigation strategies

Evaluate technologies and solutions to enhance security capabilities.

Identify security gaps and communicate associated business risks to relevant stakeholders.

Provide solutions aligned with business needs, considering security and compliance requirements.

Verify the effectiveness of security controls in mitigating identified risks.

Assist engineering projects throughout the Secure Software Development Life Cycle (SSDLC) and collaborate to effectively priontize product security elements

Technical Skill:

• Strong knowledge of information security principles, security architectures, frameworks, standards, and emerging threats, with the ability to implement effective mitigation strategies.

Deep understanding of network protocols operating systems, databases, applied cryptography, least privilege, zero

trust principles, identity & access management, and other core information security concepts.

Familiarity with regulatory requirements and compliance standards (NIST. ISO 27001, GDPR, SOCZA Family websuntory and its associated best security practices covering applications, infrastructure.