Applications Security Specialist
hace 1 semana
Main Activities / Responsibilities:
- Generation of threat modeling analysis, security requirements and abuse cases for all
developments carried out in ADC.
- Analyze changes to existing software looking for security risks that can be implemented in the
coding process.
- Determine and advise on the recommended security controls required to remediate findings and
issues in an efficient and concise manner.
- Generate awareness campaigns to all stakeholders of the software process.
- Help developers to use secure coding practices, as well as resolve specific doubts about
vulnerabilities identified in the different testing scenarios.
- Align security solutions to Holcim methodologies and standards.
- Design, implement, and support the security model for general security solutions
- Develop and drive the implementation of security best practices and standards.
- Review requests for new systems or changes to existing systems and evaluate the impact to
security.
- Conduct pre-audits on security issues of concern, work with the user community on remediation;
conduct spot checks of user security to ensure compliance.
code and cloud services.
- Provide support to other colleagues in terms of technical/functional expertise with the assigned
business processes.
- Expert in Vulnerability Management tools like Qualys or Nessus.
Qualifications:
- Bachelor’s degree in Computer Science, Engineering, or related discipline with an IT focus.
- Certifications: CISSP, CISM, CISA, CRISC ITIL, CMMI, ISO 27001, GSEC, CSSLP.
- Ethical Hacking certifications desired.
- Secure coding certifications desired.
Required Experience:
focus, assessments and audits.
- Experience in fullstack development, object-oriented programming, microservices oriented
architecture, with knowledge in agile methodologies and DevOps model.
Desired Experience:
- Experience on secure development and ethical hacking.
- Experience with vulnerabilities and fixes for different languages (C, C#, Java, Javascript)
Soft skills:
- Experience coordinating and completing multiple tasks within established and changing deadlines.
- Excellent organizational, analytical, and independent problem solving skills.
- Demonstrated excellent oral and written communication skills necessary to interact effectively with
colleagues and with users of varying technological skill levels.
- Strong customer / end-user / client service orientation.
- Thrives working in a highly collaborative and team environment.
- Highly self-motivated and directed.
- Ability to provide 24/7 support to respond to critical incidents or business impacting project
deliverables.
- Keen attention to detail.
- Capability for problem solving, decision making, sound judgment, assertiveness.
- Ability to deal with difficult situations, unclear priorities and blocking stakeholders.
- Ability to work decisively under heavy workload considering the criticality, urgency and extended
work hours required to ensure availability of the service in accordance with service level
commitments.
- Ability to manage multi-cultural and multi-located teams.
Leadership skills:
- Lead by example on values and culture.
- A natural leader whose personality and communication skills instill a sense of credibility and trust.
- Able to coherently explain the proposed design and gain stakeholder buy-in to the proposed
solution.
- Cost conscious and keeps a big picture perspective.
Required skills:
- Authentication and Access Control Tools, Management and Administration.
- Application Security Architecture & Cloud Computing Concepts.
- Change & Security Configuration Audit and Control.
- Encryption Processes, Management and Administration.
- Experience in static and dynamic security testing (code review, vulnerability analysis, Ethical
Hacking)
- Knowledge in offensive security methodologies (OWASP, MASVS, OPENSAMM, CKC, etc).
Knowledge in tools such as OwaspZap, Burpsuite, Nessus, Service Manager, Git, Fortify, Codacy,
Sonarqube.
Desired skills:
- Knowledge in AWS cloud security.
Languages:
- English desired (written & spoken)
- Spanish required (written & spoken)
**Benefits**:
- Law benefits
- Courses and certifications
-
Applications Security Specialist
hace 6 días
Bogotá - Remoto, Colombia GSB A tiempo completoMain Activities / Responsibilities: ● Generation of threat modeling analysis, security requirements and abuse cases for all developments carried out in ADC. ● Analyze changes to existing software looking for security risks that can be implemented in the coding process. ● Identify vulnerabilities in the source code and in the runtime application. ●...
-
Web Application Security Specialist
hace 2 días
Bogotá, Bogotá D.E., Colombia Scotiabank A tiempo completoJob SummaryWe are seeking a highly skilled Web Application Security Specialist to join our team at ScotiaTech. As a key member of our Cybersecurity Program, you will play a critical role in monitoring and reporting vulnerabilities found on Scotiabank web applications.About the RoleThe Web Application Security Program's main objective is to provide monitoring...
-
Global IT Security Specialist
hace 3 meses
Tocancipá, Cundinamarca, Colombia CANPACK A tiempo completoJob overview: We are seeking a Global IT Security Specialist who will play a crucial role in maintaining the security of the IT systems within our entire global organization. Your main responsibility will be to ensure that IT Security is continuously upheld throughout our environment. In addition, you will actively participate in analyzing requirements and...
-
Cloud Security Specialist
hace 2 semanas
Bogotá, Bogotá D.E., Colombia SOS Trabajo A tiempo completoGeneral Overview The Cloud Security Specialist plays a crucial role in the development and implementation of secure cloud solutions, ensuring that all necessary security measures and requirements are integrated into the cloud architecture. Key Responsibilities Safeguard the organization's cloud assets in accordance with applicable governance laws,...
-
Security Analyst
hace 4 días
Bogotá, Bogotá D.E., Colombia Softgic A tiempo completoAbout the RoleWe are seeking a highly skilled Security Analyst to join our team at Softgic. As a key member of our security team, you will be responsible for ensuring the confidentiality, integrity, and availability of our systems and data.Key ResponsibilitiesProtection Needs Assessment: Conduct initial assessments to identify potential security risks and...
-
Security Analyst
hace 4 días
Bogotá, Bogotá D.E., Colombia Softgic A tiempo completoAbout the RoleWe are seeking a highly skilled Security Analyst to join our team at Softgic. As a key member of our security team, you will be responsible for ensuring the confidentiality, integrity, and availability of our systems and data.Key ResponsibilitiesProtection Needs Assessment: Conduct initial assessments to identify potential security risks and...
-
Cloud Security Specialist
hace 2 semanas
Bogotá, Bogotá D.E., Colombia SOS Trabajo A tiempo completoGeneral Overview The Cloud Security Specialist plays a pivotal role in the design and engineering of secure cloud environments, ensuring that all necessary security controls and requirements are integrated into cloud solutions. Key Responsibilities Safeguard the organization's cloud assets in accordance with governance laws, regulatory compliance, and...
-
Incidents AWS Security Specialist
hace 4 días
Bogotá, Colombia SOS Trabajo A tiempo completoGeneral Description Provide technical leadership in the creation, establishment, and maintenance of the information technology/security risk framework, processes, and controls, taking into consideration the overall business strategy, legal/regulatory requirements, and other best practices. Perform security assessment to applications, systems, and vendors....
-
Security Analyst
hace 1 semana
Bogotá, Colombia SOFTGIC S.A.S. A tiempo completoJob Description This is a remote position.At Softgic, we work with the sharpest minds, with those who build, with those who love what they do, with those who have a 100% attitude because that's our #Coolture. Join our purpose of making life easier with technology and be part of our team as a Security Analyst.Compensation:USD 10 - 17/hour.Location:Remote...
-
Security Analyst
hace 1 semana
Bogotá, Colombia SOFTGIC S.A.S. A tiempo completoThis is a remote position.At Softgic, we work with the sharpest minds, with those who build, with those who love what they do, with those who have a 100% attitude because that's our #Coolture. Join our purpose of making life easier with technology and be part of our team as a Security Analyst.Compensation:USD 10 - 17/hour.Location:Remote (anywhere).Mission...
-
Reservoir Engineering Applications Specialist
hace 2 días
Bogotá, Bogotá D.E., Colombia Quorum Software A tiempo completoAbout the RoleWe are seeking a highly skilled and motivated individual to join our team as a Reservoir Engineering Applications Specialist. As a key member of our technical support team, you will be responsible for providing timely and effective solutions to complex business problems through the troubleshooting, triaging, and testing of our reservoir...
-
Cloud Security Architect
hace 2 días
Bogotá, Bogotá D.E., Colombia TeleTech Holdings, Inc. A tiempo completoJob DescriptionJob Title: Cloud Security ArchitectJob Summary:We are seeking a highly skilled Cloud Security Architect to join our team at TeleTech Holdings, Inc. As a Cloud Security Architect, you will be responsible for designing and implementing secure cloud-based systems, including infrastructure, platforms, and applications.Key Responsibilities:Security...
-
Infrastructure Specialist
hace 2 días
Bogotá, Bogotá D.E., Colombia Dedalus A tiempo completoTransform Healthcare with PurposeMake a meaningful impact in the healthcare industry by joining Dedalus as an IT Infrastructure Specialist.About the RoleKey Responsibilities:Infrastructure Analysis and DesignContribute to the analysis, design, and implementation of IT infrastructure (on premise and/or cloud based) that supports Dedalus Solutions at regional...
-
Corporate Security Specialist
hace 5 días
Bogotá, Bogotá D.E., Colombia Pinkerton A tiempo completoJob Summary:The Security Coordinator assigned to a specific client will be responsible for developing all security programs, personnel, contractors, and consultants. The coordinator will be responsible for the strategic identification of security risks, threats, and vulnerabilities as well as the prevention and protection of the client's employees, assets,...
-
Cybersecurity Specialist
hace 2 días
Bogotá, Bogotá D.E., Colombia Mitel A tiempo completoAbout MitelMitel is a global leader in business communications, providing innovative solutions to help businesses connect, collaborate, and deliver exceptional customer experiences.Job SummaryWe are seeking a highly skilled Cybersecurity Specialist to join our team. As a Cybersecurity Specialist, you will play a critical role in ensuring the security and...
-
Information Security Specialist
hace 5 días
Bogotá, Bogotá D.E., Colombia Scotiabank A tiempo completoAbout the RoleThe Team Lead is responsible for leading a group of cybersecurity analysts, reviewing, assessing, and developing their analytical and technical skills. This role requires a strong desire to develop and train security analysts, investigators, and responders to fortify Scotiabank's controls.Key AccountabilitiesChampion a customer-focused culture...
-
Security Analyst
hace 2 días
Bogotá, Bogotá D.E., Colombia SOFTGIC S.A.S. A tiempo completoAbout Softgic S.A.S.We are a digital transformation company that values quality and excellence in everything we do. Our mission is to deliver top-notch products and services that meet the highest standards of our clients.Job DescriptionWe are seeking a highly skilled Security Analyst to join our team. As a Security Analyst, you will be responsible for...
-
Network Design and Implementation Specialist
hace 2 días
Bogotá, Bogotá D.E., Colombia Unisys A tiempo completoAbout the RoleWe are seeking a highly skilled Network Design and Implementation Specialist to join our team at Unisys. As a key member of our network infrastructure team, you will be responsible for designing, implementing, and maintaining our network infrastructure to ensure high availability and performance.Key ResponsibilitiesNetwork Design and...
-
Information Security Consultant Lead
hace 3 días
Bogotá, Bogotá D.E., Colombia Scotiabank A tiempo completoAbout the RoleWe are seeking a highly skilled Information Security Consultant Lead to join our team at ScotiaTech. As a key member of our organization, you will play a critical role in supporting the Global Wealth Engineering team and contributing to the overall success of IT&S and ICRM in GWE.Key ResponsibilitiesChampion a Customer-Focused Culture: Deepen...
-
Electronic Security Systems Specialist
hace 2 días
Bogotá, Bogotá D.E., Colombia Johnson Controls A tiempo completoJob DescriptionJob Title: Technical ConsultantJob Summary:We are seeking a highly skilled Technical Consultant to join our team at Johnson Controls. As a Technical Consultant, you will be responsible for providing expert advice and support to clients regarding the implementation, optimization, and maintenance of electronic security systems.Key...