- Responsible for security into company's CI/CD- Responsible for identification of product security gaps and issues- Quarterly and yearly planning of Application Security Team’s activities- Allocating jobs and workloads to individual staff members based on their skills and ability- Coaching and mentoring new starters in Application Security Team- Development and implementation of Secure Software Developing Process along with metrics covering the whole process.-… Show more - Responsible for security into company's CI/CD- Responsible for identification of product security gaps and issues- Quarterly and yearly planning of Application Security Team’s activities- Allocating jobs and workloads to individual staff members based on their skills and ability- Coaching and mentoring new starters in Application Security Team- Development and implementation of Secure Software Developing Process along with metrics covering the whole process.- Continuous improving of SDLC practices in order to make the process fully automated and measurable.- Implementing, conducting annual application security trainings for developers, QA(A), architects, team leads.- Developing, maintaining and refining internal Application Security Requirements to Development.- Performing threat modelling and design review.- Obtaining and collating information around information security risks and remedial action.- Creating and maintaining partnerships across software engineering, application security- Applying a risk based approach to address issues and vulnerabilities found in both production and pre-production applications- Responsible for driving security initiatives Show less

- Responsible for identification of product security gaps and issues- Quarterly and yearly planning of Application Security Team’s activities- Allocating jobs and workloads to individual staff members based on their skills and ability- Coaching and mentoring new starters in Application Security Team- Development and implementation of Secure Software Developing Process along with metrics covering the whole process.- Continuous improving of SDLC practices in order to make the… Show more - Responsible for identification of product security gaps and issues- Quarterly and yearly planning of Application Security Team’s activities- Allocating jobs and workloads to individual staff members based on their skills and ability- Coaching and mentoring new starters in Application Security Team- Development and implementation of Secure Software Developing Process along with metrics covering the whole process.- Continuous improving of SDLC practices in order to make the process fully automated and measurable.- Implementing, conducting annual application security trainings for developers, QA(A), architects, team leads.- Developing, maintaining and refining internal Application Security Requirements to Development.- Performing threat modelling and design review.- Obtaining and collating information around information security risks and remedial action.- Creating and maintaining partnerships across software engineering, application security- Applying a risk based approach to address issues and vulnerabilities found in both production and pre-production applications Show less

- Development and implementation of Secure Software Developing Process.- Continuous improving of SDLC practices in order to make the process fully automated and measurable.- Implementing, conducting annual application security trainings for developers, QA(A), architects, team leads.- Developing, maintaining and refining internal Application Security Requirements to Development.- Performing threat modelling and design review.- Performing manual security assessment and source… Show more - Development and implementation of Secure Software Developing Process.- Continuous improving of SDLC practices in order to make the process fully automated and measurable.- Implementing, conducting annual application security trainings for developers, QA(A), architects, team leads.- Developing, maintaining and refining internal Application Security Requirements to Development.- Performing threat modelling and design review.- Performing manual security assessment and source code review of web and mobile applications.- Customization and integration of several SAST tools into SDL (HP Fortify, Gixy, OWASP Dependency Check, Sonarqube); Implementation and integration static security analyzer for Dart language.- Customization and integration of several DAST tools into SDL (Burp Suite, WPScan);- Obtaining and collating information around information security risks and remedial action.- Creating and maintaining partnerships across software engineering, application security- Applying a risk based approach to address issues and vulnerabilities found in both production and pre-production applications- Coaching and mentoring new starters in Application Security Team. Show less

- Development and implementation of Secure Software- Development Lifecycle.- Implementing, conducting annual application security- trainings for developers.- Creating internal application security requirements.- Performing threat modelling and design review.- Application Security assessment: * Automated static application security testing * Automated dynamic application security testing * Manual black box assessment * Manual source code review-… Show more - Development and implementation of Secure Software- Development Lifecycle.- Implementing, conducting annual application security- trainings for developers.- Creating internal application security requirements.- Performing threat modelling and design review.- Application Security assessment: * Automated static application security testing * Automated dynamic application security testing * Manual black box assessment * Manual source code review- Leading small projects (3 people).- Verifying compliance to PCI DSS and customer’s securityrequirements.- Consulting on security best practices in softwaredevelopment: ASP.NET MVC 5 (C#), Entity Framework,JQuery, WCF services. Show less