Dieses Stellenangebot ist nicht mehr verfügbar
Über
Candidates should take the time to read all the elements of this job advert carefully Please make your application promptly.
The role is hands-on and works closely with engineering teams to embed security into design, delivery, and operations.
Experience in General Insurance and booking lifecycle systems is essential.
Key Responsibilities Own security architecture for cloud-native applications (Angular + Node.js).
Define secure AWS patterns (IAM, networking, encryption, secrets, logging).
Lead threat modelling, risk assessment, and secure design reviews.
Embed DevSecOps practices (SAST/DAST/SCA, container scanning, pipeline gates).
Drive API security (OAuth2/OIDC, JWT, RBAC/ABAC, OWASP controls).
Support compliance requirements (GDPR, audit evidence, security NFRs).
Provide technical leadership and mentor teams on secure engineering.
Must-Have 10+ years IT experience.
5+ years Security Architecture experience.
3+ years in a Security Lead / Tech Lead role.
Strong hands-on experience with AWS security, ECS/Fargate, and container security.
Strong application security knowledge for Node.js APIs and Angular.
Experience in General Insurance + booking lifecycle domains.
Nice-to-Have Event-driven security (SNS/SQS/Kafka).
Contract testing / API security validation. xcfaprz
AWS Security Specialty / CISSP / CCSP.
Key Deliverables Security Architecture + threat models Secure HLD/LLD + C4 views CI/CD security controls + IaC patterns NFR/security packs + runbooks Benefits: Hybrid
Sprachkenntnisse
- English
Hinweis für Nutzer
Dieses Stellenangebot wurde von einem unserer Partner veröffentlicht. Sie können das Originalangebot einsehen hier.