Overview
Job Purpose and Summary
We are looking for a strong Application Security Lead – Cloud to strengthen our Canon EMEA Information Security Department (EISD). This role will be responsible for ensuring that our projects and applications are held to a high standard of security, by performing security reviews and assessments, providing education and guidance for the implementation of security controls, and by being a security thought leader for our IT initiatives.
What we give
As an Application Security Lead – Cloud you will:
- Work closely with the business and IT stakeholders, and in close cooperation with all the functions in the Canon EMEA Security team
- Act as the security representative within project streams for new and upcoming initiatives.
- Conduct security architecture and design reviews.
- Translate security policies into security requirements for new and existing projects.
- Support project and development teams with relevant security knowledge.
- Assist with the implementation of security design principles.
- Guide development and project teams in the remediation of identified security deficiencies.
- Support the planning and execution of application pentests, and the follow-up of remediation measures.
- Recommend and assist in the implementation of security controls in the SDLC of supported applications.
What we ask
We are looking for the following in our future colleague:
- Significant working experience in a technical capacity in a Security or IT department, preferably across multiple security domains.
- Demonstrable experience in performing security assessments and security design reviews.
- In-depth security knowledge for cloud platforms, mainly Azure and AWS.
- Experience in software development and Application Security.
- Knowledge and expertise in secure software development lifecycle (SSDLC) is highly desirable.
- Ability to understand, follow up and progress mitigation activities for security auditing reports, penetration testing reports and/or configuration reviews.
- Good stakeholder management and communication skills.
- Experience working in large international organizations and in handling large enterprise projects is a plus.
- Attention to detail.
- Ability to work independently and as part of a team.
- A continuous learning mindset, to stay up to date with the latest developments in the industry.
- Degrees and certifications are welcome, but are not required.
Knowledge in any of the following are highly desirable:
- Secure Architecture and Design principles
- Pentesting tools and techniques
- Threat Modelling
- Secure coding for common languages and platforms
- Security frameworks, such as OWASP, NIST CSF, CIS etc.
- Understanding of EU and international compliance requirements, such as GDPR, PCI-DSS, CRA etc.
- Containers and serverless technologies
You will need
In addition to a competitive salary, you will be eligible for the following benefits in this role:
- Performance-based bonus of 12,5%
- 31 days holiday per year
- Pension plan
- Bicycle plan
- Full coverage of your public transport costs and partially car costs
Canon champions hybrid working with a flexible working policy. You will be part of an energetic and innovative environment with more than 50 different nationalities! Lastly you’ll find that Canon encourages continuous Learning and Development with a wide range of resources and support available on demand.
Does this seem like a great fit for your career expectations? We’re excited to hear from you! Even if you don’t meet all the qualifications we still encourage you to apply.
Job Family: IT Security
Job grade: 14
Further information
- Confident
- Problem Solving
- Team player
- Self-starter
- Apply Business Acumen
- Focus on the Customer
- Take Ownership and Accountability
