Perform information risk assessments in compliance with the global Information Risk Assessment methodology, policies, and standards.
Ensure each completed information risk assessment is peer-reviewed and communicated to various stakeholders.
Facilitate and perform threat modeling to identify applicable threats and countermeasures.
Develop and enhance security requirements for DevOps environments and collaborate with developers, engineers, and support teams to help implement those requirements in applications, CI/CD pipelines, container workloads, etc.
Provide training and advise key stakeholders on requirements, processes, standards, and best practices around information security and risk management.
Respond to audits, regulatory reviews, risk and control self-assessments.
Qualifications
Experience in application security including secure software assessment...