CEDACRI GROUP - ION: SECURITY ANALYST

About us:Cedacri is part of ION Group, a community of visionary innovators, dedicated to providing pioneering software and consultancy services to financial institutions, trading firms, central banks, governments, and corporations around the world. We strive to simplify the way people work. We do that by providing workflow and process automation software, as well as providing real-time data and business intelligence to help people make better decisions. We are 13,000+ employees, 60+ global offices, and over 4,800+ customers worldwide. Your role:For the strengthening of the Architecture and Innovation Unit, we are looking for brilliant professionals with proved experience in complex environments, preferably banking/finance, to join the Application Security team. The ideal candidate will experience a dynamic, fast-paced and innovative environment, and will contribute to define the best architectural solution, while maintaining and evolving the current infrastructure. Your duties and responsibilities •         define and manage application security standards and policies, including frameworks, technology stacks, integration patterns, reference architecture and common components•         work with the IT management and the CISO office to verify the application of the standards developed and obtain feedback with a view to continuous improvement•         support the dev teams in the application of reference architectures and security policies to ongoing projects•         support the dev teams in the resolution of vulnerabilities detected by the SAST/SCA/DAST scanning tools•         support the CISO office for application security issues•         analyze the new vulnerabilities found and support the dev teams as well as the infrastructural areas in resolving them•         analyze the main technological and innovation market trends in order to support corporate decisions in the field of application security
Other dutiesWe might ask you to perform other tasks and duties as your role expands. Your skills, experience, and qualifications required •         Degree in computer science/science•         Minimum 5y of experience as developer and as Security Analyst•         Strong relational and people management skills•         Service orientation, strong sense of responsibility and proactive attitude•         Flexibility and ability to work under pressure•         Ability to analyze complex information from many different sources•         Analytical, structured and method-oriented approach with a strong attention to detail•         Excellent listening and negotiation skills and the ability to work in a team•         Ability to translate the organization's strategy / needs into IT architecture requirements•         Ability to gain personal credibility by using open methods of communication and diplomacy.•         OS (Windows / Linux, specifically Red Hat) and Microsoft Office Suite•         Scripting solutions (Powershell / Bash / Python etc)•         Experience in the design of web APIs that respect the REST paradigm, in the main tools for defining and documenting the API (eg Swagger) and in the relative specifications (OpenAPI Specification)•         In-depth knowledge of OAuth2 and OpenID Connect standards•          Knowledge of the main standards and web interfaces, both server-side (eg HTTP protocol, WebSocket protocol) and client-side (eg web API CORS, DOM, WebAuthn, Web Workers)•         Familiarity with web-related topics (eg static / dynamic web page, web API security, single-page application, progressive web application)•         Experience in using both server-side and client-side web application frameworks•         Knowledge of the major cloud service providers (AWS, Azure, Google)•         Knowledge of microservices architectures (MSA), based in particular on Docker and Kubernetes•         Proven experience in technical writing and documentation (submission of blog articles, articles in specialized journals, scientific articles, etc. is welcome)•         Experience in developing with the following languages: C/C ++, C#, Python•         Javascript / Typescript with experience on NodeJS•         Good knowledge of relational database development and administration (MS SQL Server, Oracle)•         Good knowledge of noSQL database development and administration (mongoDB, Cassandra)•         Experience in the management of Windows and Linux servers•         Experience in the use of the main static and dynamic code analysis tools•         C1 English level knowledge What we offer:Permanent employment contract
Location: Collecchio (PR)
Important notes: According to the Italian Law (L.68/99) please note that candidates from the disability list will be given priority.