AppSec Architect

Company: Kimberly-Clark
Location: Chicago
Posted on: September 25, 2022

Job Description:

AppSec Architect Job Description Conduct application security testing to comply with corporate policies, and regulatory requirements. -Coordinate and execute application security tests, communicate the results to relevant stakeholders, and help application developers understand how to fix code security issues. (Remote option) Responsibilities:

• Conduct thorough application security penetration tests
• Work effectively with a cross-functional team to plan, execute, and communicate findings from application security testing
• Work with application owners to improve their knowledge and practical application of information security best practices, including but not limited to threat assessment, vulnerability prevention and secure coding practices.
• Partner with DevOps team to ensure application security tools such as SAST and DAST are performing well and generating accurate testing results.
• Flexibility to change direction and manage conflicting demands. Experience:
  • 10 years progressive Information Technology experience or equivalent specialized skills with 6+ years of application security experience.
  • Experience in running & administrating static analysis (SAST) and dynamic analysis (DAST) tools and processes
  • Experience in conducting and training application penetration testing
  • Experience in Cloud Security.
  • Experience and strong understanding of DevSecOps processes, tools, and integrations. Qualifications:
    • Strong knowledge and ability to work with DevOps teams on the processes and integrations.
    • Strong web application security knowledge with thorough understanding of web, mobile, and API testing
    • Knowledge of application security architecture and ability to perform risk assessments on identified applications.
    • Knowledge of DevSecOps processes and ability to work with the concerned stakeholders to deliver the results for security integrations in DevOps.
    • Development background in .Net, Java, and/or Python a plus
    • Strong knowledge of Security Standards, frameworks, and groups (OWASP, WASC, OSSTMM)
    • Knowledge of the software development lifecycle under agile environment in a large enterprise
    • Knowledge of database, application, and Web server design
    • Knowledge of current and emerging security technologies, threats, and techniques for exploiting security vulnerabilities
    • Knowledge of public cloud services Education:
      • Bachelor's degree in Computer Science, Information Technology or equivalent
      • Advanced degree preferred
      • Certifications including GWAPT, GWEB, GPEN, OSCP, CSSLP, CASE, or similar preferred Global VISA and Relocation Specifications K-C requires that an employee have authorization to work in the country in which the role is based. In the event an applicant does not have current work authorization, K-C will determine, in its sole discretion, whether to sponsor an individual for work authorization. However, based on immigration requirements, not all roles are suitable for sponsorship.
        This role is available for local candidates already authorized to work in the role's country only. K-C will not provide relocation support for this role. About Us: Huggies -. Kleenex -. Cottonelle -. Scott -. Kotex -. Poise -. Depend -. 25% of people in the world use Kimberly-Clark products every day, and it takes the best people to make that happen. We're founded on 150 years of market leadership, and we're always looking for new and better ways to perform, especially when it comes to product and process innovation. Our customers are always looking for new and better. Our competitors won't stop evolving. And our communities demand responsible corporate practices. We need bold, transformative ideas from people who can turn them into reality. That means there's no time like the present to make an impact at Kimberly-Clark. It's all here for you at Kimberly-Clark. About You: You were made to do this work: Your knowledge of DevSecOps processes and communication skills with stakeholders will yield incredible results for security integrations in DevOps. Conducting thorough application penetration testing is what you do, and we are Thankful for that! You love what you do, especially when your work makes a difference. At Kimberly-Clark, we're constantly exploring new ideas on how, when, and where we can best achieve results. When you join our team, you'll experience Flex That Works: flexible (hybrid) work arrangements that empower you to have purposeful time in the office and partner with your leader to make flexibility work for both you and the business. - Total Benefits: Here are a few of the benefits you'd enjoy. For a complete overview, see www.mykcbenefits.com. - Great support for good health with medical, dental, and vision coverage options. No waiting periods or pre-existing condition restrictions. Access to an on-site fitness center, occupational health nurse, and allowances for high-quality safety equipment. - Flexible Savings and spending accounts to maximize health care options and stretch dollars when caring for yourself or dependents. Diverse income protection insurance options to protect yourself and your family in case of illness, injury, or other unexpected events. Additional programs and support to continue your education, adopt a child, relocate, or even find temporary childcare. To Be Considered: Click the Apply button and complete the online application process. A member of our recruiting team will review your application and follow up if you seem like a great fit for this role. - In the meantime, check out the career's website. You'll want to review this and come prepared with relevant questions if and when you pass GO and begin interviews. - And finally, the fine print--- For Kimberly-Clark to grow and prosper, we must be an inclusive organization that applies the diverse experiences and passions of its team members to brands that make life better for people all around the world.--- We actively seek to build a workforce that reflects the experiences of our consumers.--- When you bring your original thinking to Kimberly-Clark, you fuel the continued success of our enterprise. We are a committed equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, sexual orientation, gender identity, age, pregnancy, genetic information, citizenship status, or any other characteristic protected by law. The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification. Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position. This role is available for local candidates already authorized to work in the role's country only. K-C will not provide relocation support for this role. #Remote Global VISA and Relocation Specifications: Primary Location USA-GA-Atlanta-Roswell Additional Locations USA-IL-Chicago, USA-REMOTE, USA-TX-Dallas, USA-WI-Neenah Worker Type Employee Worker Sub-Type Regular Time Type Full time

Keywords: Kimberly-Clark, Chicago , AppSec Architect, Other , Chicago, Illinois