Application Security Lead

At Allianz Technology, our Information Security Operations team is the driving force behind our cybersecurity strategy, continuously enhancing global security solutions to protect Allianz from emerging threats. Allianz Vulnerability Management (AVM) plays a critical role in identifying, analyzing, and reporting vulnerabilities across various business and technological systems.

Allianz Technology is seeking a Lead Application Security Specialist to take charge of a global product team responsible for web application vulnerability assessments. In this leadership role, you will drive both the technical and business aspects of the product, ensuring alignment with DevSecOps principles and cloud technologies, while leading a team of experts. You will guide the integration of security assessments into the SDLC, support the identification and reporting of security risks, and promote a strong application security culture across the organization. This is an excellent opportunity for a senior expert with a passion for leadership and application security to make a significant impact.

What you can find at Allianz Technology:

• Work Life - Balance: We offer flexible working hours so you can start your working day according to your needs. In addition, during the summer and every Friday of the year, you have the option of intensive working hours, which will allow you to enjoy more free time for yourself.
• International and Multicultural Environment: We value the diversity and richness that comes from working in an international and multicultural environment. With more than 52 different nationalities represented in our company, we offer our employees the opportunity to collaborate with people from all over the world, enriching the work environment and providing the opportunity to learn and grow in a truly global setting. This diversity allows us to have a broader perspective, foster creativity and innovation, and promote an inclusive work environment where every voice is heard and valued.
• Professional Growth Opportunities: We are committed to the professional development of our employees and provide numerous opportunities for growth within the company. We value internal talent and promote internal advancement, offering training programs, mentoring, and skills development that allow our employees to advance in their careers. 
• Compensation and Benefits Package: It includes a company bonus plan, pension, employee stock program, and multiple employee discounts. 

What will make you succeed in this position?

• 5 to 8 years of work experience in the field of application security
• 2-4 years of experience with leadership and management
• Hands-on experience with web application security testing
• In-depth knowledge of the key industry standards (OWASP TOP10)
• Experience with Qualys Web Application Scanning (WAS) is a plus
• Excellent social and communication skills
• Broad background in Application Security and Vulnerability Management end-to-end processes
• Excellent knowledge of application security and SDLC
• Excellent knowledge of industry-standard tools, methodologies and standards (OWASP TOP10)
• Manage projects and work along the agile principles
• Familiarity with risk management process and ISMS frameworks (ISMS 27001)
• Work with minimal supervision as an individual contributor and as part of the team
• Develop internal and/or external documentation, such as detailed procedures, playbooks, and operational metrics reports
• Demonstrate the ability to work fully independently and solve complex problems or situations based on multiple sources of information,  volatile situations, uncertainty and ambiguity.
• Understanding the security governance, operations and technical platforms in an enterprise organization
• Bachelor of Science in either Information Technology or Information Security or comparable education
• Very fluent in English language (business communication)

Your mission in the role will be:

• Lead a global product team responsible for web application vulnerability assessments, supporting reporting and communication efforts driving security awareness and building application security culture.
• Lead technical and business aspects of the product: key architecture design aligned with DevSecOps principles, Cloud technologies as well as leading team of experts, alignment with financial management functions and driving alignment on application security with key stakeholders.
• Provide expertise from the senior expert standpoint, consult and guide IT and information security functions in incorporating web application security assessments as part of the overall SDLC process.
• Continuous development of expertise and building an institutional knowledge inside the organization
• Pro-actively foster collaboration among IT services, application owner and Governance functions
• Supporting the identification and reporting information security risks, vulnerabilities and other exposure
• Develop mitigation strategies and provide appropriate advice regarding latest application security threats and risks

 About Allianz Technology

Allianz Technology is the global IT service provider for Allianz and delivers IT solutions that drive the digitalization of the Group. With more than 12,000 employees located in 51 countries around the globe, Allianz Technology works together with other Allianz entities in pioneering the digitalization of the financial services industry.

We oversee the full digitalization spectrum – from one of the industry’s largest IT infrastructure projects that includes data centers, networking and security, to application platforms that span from workplace services to digital interaction. In short, we deliver full-scale, end-to-end IT solutions for Allianz in the digital age.

D&I statement

Allianz Technology is proud to be an equal opportunity employer encouraging diversity in the working environment. We are interested in your strengths and experience. We welcome all applications from all people regardless of gender identity and/or expression, sexual orientation, ethnicity and cultural background, age, nationality, religion, disability, or philosophy of life.

Join us. Let´s care for tomorrow.

You. IT

61264 | Ingeniería informática y tecnológica | Management | Non-Executive | Allianz Technology | Jornada completa | Indefinido