BackBack to menu

Forgotten password

Enter your email address. We'll send you a link to reset your password
BackBack
BackBack

Saved! Click to view all your saved jobs

You can also email this job...

BackBack

Share this job

BackBack

Apply for this job

Clicking GO will take you to another web site
You'll continue your application for the job there
BackBack

Register your CV to Apply

BackBack to apply

Choose a CV

We accept DOC, DOCX, PDF, RTF, TXT
Type or paste your CV

Now add this CV

BackBack to apply
BackBack
BackBack to apply

Login to apply

BackBack to login

Forgotten password

Enter your email address. We'll send you a link to reset your password
BackBack to apply

Tell us where you live

Tell us where you live
(Type, then select from options provided)
BackBack to apply

Which locations are you happy to work in?

BackBack to apply

Choose up to 3 sectors

BackBack to apply

Choose any or all job types

BackBack to apply

Choose up to 3 licence types

BackBack to apply

Choose up to 5 type ratings

Sr Cyber Security Architect - Application Security

Sr Cyber Security Architect - Application Security

  • GE Aviation - 271 jobs
  • https://www.jobsinaviation.com/Images/Default/recruiters/Thumbnail/ccc13e36-a3be-4aac-9ef6-88f587f249eb131129807088665247.png

Cincinnati, Indiana, United States


Role Summary:
Looking to add your security expertise to our growing team? Join our Aviation AppSec group, where you will serve as a domain expert while partnering with numerous application development teams as we implement our Secure Development Life Cycle (SDLC) and design defensible applications. Apply today!
Essential Responsibilities:
This individual is required to have excellent communication abilities and a background in application development lifecycles, approaches, languages, and tools. Additional responsibilities include:
  • Lead security-focused architecture and code reviews, drive threat modeling exercises, and validate security designs across numerous Aviation DT applications
  • Drive adoption of secure coding frameworks and tooling by development teams
  • Educate product owners and developers on best practices around product design
  • Contribute to the development and enforcement of application security standards, controls and policies
  • Act as a subject matter expert on SAST, DAST, and other AppSec related technologies
  • Review and approve secure application architectures and apply secure design principles
  • Represent Cyber team in product development meetings, and present clear & concise status
  • Partner with development teams, leaders, and product lines to provide consultative guidance, insight, and feedback on new technologies or products
  • Perform application vulnerability assessments
  • Analyze, assess, and respond to various security threats or incidents if needed

Qualifications/Requirements:
  • Bachelor's degree from accredited university or college with minimum of 2 years of professional experience OR Associates degree with minimum of 5 years of professional experience OR High School Diploma with minimum of 7 years of professional experienceNote: Military experience is equivalent to professional experience
     
    Eligibility Requirement
  • Legal authorization to work in the U.S. is required.  We will not sponsor individuals for employment visas, now or in the future, for this job.
    Desired Characteristics:
    • Bachelor's Degree in Computer Science or in a STEM major (Science, Technology, Engineering, or Math)
    • Prior experience in Application Security (AppSec) or 5+ years as a senior software architect or application architect
    • Solid grasp of any of the following: OWASP Top 10, OWASP ASVS, SANS SWAT, CIS Top 20
    • Prior hands-on experience utilizing SAST and DAST technologies (Checkmarx, Veracode, Synopsys, Sonarqube, Fortify, Qualys, BurpSuite, AppScan, ZAP, etc.)
    • Strong grasp of web application architecture and design
    • Knowledge of or experience implementing the NIST 800-53 controls framework
    • Knowledge of CI/CD and automation tools (Chef, Git, Jenkins, AWS CodeBuild, Azure DevOps)
    • Familiar with current enterprise application development methodologies, including Agile or DevOps
    • Prior experience in software development utilizing modern languages and frameworks
    • Experience using source control technologies including GIT, GitHub, and GitLab
    • Prior experience integrating security tooling into DevOps pipelines
    • Experience conducting Web Application Penetration Tests or vulnerability assessments
    • Possess any of the following certifications: CISSP, OSCP, GWAPT, GPEN, GXPEN, or CEH
    • Knowledge of Identity management and federation (SAML, Oauth, SCIM, XACML)
    • Experience developing, architecting or evaluating cloud-based applications
    • Possess an Azure, AWS, or GCP certification
    • Knows the latest evolving technologies via formal training or proactive education
    • Strong knowledge of Cyber Security, multiple related engineering functions, and application risk identification and evaluation techniques
    • Understanding of networking and security engineering, technical approaches in design, building, testing, and debugging problems

    About Us:
    At GE Aviation , we are imagination at work. Whether we're manufacturing components for our GEnx engines or driving innovation in fuel and noise reduction, the GE Aviation teams are dedicated to turning imaginative ideas into advances in aviation that tackle some of the world's toughest problems. Join us and you'll find yourself in a dynamic environment where our ongoing, substantial investment in research and development keeps us moving forward and looking ahead.
    At GE, developing people is embedded in our culture and integral to our growth. Here you'll work collaboratively and across functions with the highest caliber talent, utilizing ground breaking technology and processes. Whether it's the next generation of ecomagination products or the future of aircraft engines, we've got the state-of-the-art resources to make those innovations a reality. If you're passionate about av
Pay
N/A
Hours
Full time
Type
Contract
Rating
N/A
Licence
N/A

Posted 8 Feb 2020

Closes 8 Mar 2020

Ref: 3433265

This job was posted to: Airport security

Receive jobs like this by email

Related jobs

Sr Staff Cyber Security Architect

Cincinnati, Indiana, United States
GE Aviation

Information Security & Privacy Compliance Analyst

Boston Corner, Indiana, United States
GE Aviation

Product Security Specialist - Application Security

Cincinnati, Indiana, United States
GE Aviation

Sr Staff Cyber Security Architect

Cincinnati, Indiana, United States
GE Aviation

Sr Staff Product Security Leader

Cheltenham, Gloucestershire, England
GE Aviation

Group Information Security Manager

Cape Town, Western Cape, South Africa
Lufthansa

Senior Security Officer Required

United Arab Emirates
Excel Technical Consulting

Lead Special Programs Security Specialist

Evendale, Ohio, United States
GE Aviation

Industrial Security Specialist

Evendale, Ohio, United States
GE Aviation

Lead Special Programs Security Specialist

Evendale, Ohio, United States
GE Aviation

Sr Cyber Security Architect - Application Security

Cincinnati, Indiana, United States
GE Aviation

Senior Cyber Security Architect

Eastleigh, Hampshire, England
GE Aviation