Senior Application Security Specialist
Leeds / Remote, United Kingdom
Applications have closed
DAZN
DAZN is the world's first truly dedicated live sports streaming service. Available in Germany on Smart TV, mobile devices & more.This role is remote first and can be aligned to our Leeds or London office. There will be a requirement to meet the teams and stakeholders a couple of times a week during the start of the role and we expect then a couple of times a month in person either in London or Leeds offices. As part of the Security Architecture & Engineering (SANE) Team you will be exposed to a wide breath of modern technologies. You will constantly learn and improve your skills in our team’s regular red teaming sessions. Benefits include access to DAZN, 25 days’ annual leave (increasing by 3 days after 3 years), annual performance-related bonus, private medical insurance, life assurance, pension contributions up to 5%, family friendly community, free access for you and one other to our workplace mental health platform app (Unmind), learning and development resources, opportunity for flexible working and access to our internal speaker series and events.
As our new Senior Application Security Specialist, you’ll have the opportunity to:
- Work and learn in a team of leading security experts. We run weekly HackTheBox sessions
- Working closely with developers, acting as a Subject Matter Expert in security threats, vulnerabilities, risks & controls.
- Empower teams following and implementing DAZN’s application security principals and outcomes, defining guidelines, and improving controls.
- Support the teams with on-going security risk assessments of new and in-flight projects.
- Proactively test the security posture and guide the remediation work for identified application security risks and vulnerabilities.
- Secure the SDLC and automate security analysis and scanning with SAST, DAST, and other tooling.
- Facilitate threat modelling sessions.
- Facilitating the Security Champions Programme.
You’ll be set up for success if you have:
- Hands-on software engineering experience, proficiency with at least one scripting/programming language.
- Good knowledge of information security principles and practices, especially in the application security domain, OWASP Top 10.
- Experience of application security testing, analysis in modern development environments.
- Ability to develop positive relationships and act as an ambassador for information security.
- Excellent oral and written communication skills.
- Appetite to research, learn and think outside of the box.
Even better if you have:
- Experience working with a public cloud provider like AWS, Azure, or GCP.
- Experience with common authN frameworks and standards like Oauth2/OIDC and JWT/JWS.
- Expertise with OWASP ASVS, Cryptography, TLS, PKI.
- Experience with highly distributed applications and microservices.
- Experience with secrets management.
Tags: Application security Automation AWS Azure Cloud Code analysis Cryptography DAST GCP Microservices OWASP PKI SAST Scripting SDLC Security analysis TLS Vulnerabilities
Perks/benefits: Career development Flex hours Health care Insurance Medical leave Salary bonus Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open Forensics-related jobs