Sr. Application Security Engineer

Key Responsibilities

• Work and learn in a team of leading security experts.
• Working closely with developers, acting as a Subject Matter Expert in security threats, vulnerabilities, risks & controls. 
• Empower teams following and implementing DAZN’s application security principals and outcomes, defining guidelines, and improving controls. 
• Support the teams with on-going security risk assessments of new and in-flight projects. 
• Proactively test the security posture and guide the remediation work for identified application security risks and vulnerabilities. 
• Secure the SDLC and automate security analysis and scanning with SAST, DAST, and other tooling. 
• Facilitate threat modelling sessions. 
• Facilitating the Security Champions Programme. 

You'll be set up for success if you have:

• Minimum of two years Hands-on software engineering experience, proficiency with at least one scripting/programming language, coding practices (CI/CD pipelines and github) is a must-have.
• Three to five years prior work experience working in a security capacity for a similar organisation 
• Good knowledge of information security principles and practices, especially in the application security domain, OWASP Top 10. 
• Experience of application security testing, analysis in modern development environments. 
• Ability to develop positive relationships and act as an ambassador for information security. 
• Excellent oral and written communication skills, fluent English is a requirement. You are able to speak in front of a bigger audience and senior management.
• Appetite to research, learn and think outside of the box. 

Even better if you have:

• Experience working with a public cloud provider like Oracle, AWS, Azure, or GCP. 
• Experience with common authN frameworks and standards like Oauth2/OIDC and JWT/JWS. 
• Expertise with OWASP ASVS, Cryptography, TLS, PKI. 
• Experience with highly distributed applications and microservices. 
• Experience with secrets management.