<p>Senior Specialist - Architecture</p> <p>Job Role: Application Security Engineer Architect<</p> <p>Location : Hartford CT<</p> <p>Job Description<</p> <p>Responsibilities<</p> <p>Lead Application Security Initiatives Develop and implement strategies to enhance application security<</p> <p>Compliance Analysis and Communication Analyze and communicate compliance regulations including data privacy briefings from industry and find its applicability<</p> <p>Security Assessments Conduct regular code reviews vulnerability assessments and penetration testing<</p> <p>Vulnerability Assessment and Tracking Perform regular scans and tests to identify security weaknesses<</p> <p>Threat Analysis Identify and analyze threats conduct threat modeling and develop mitigation strategies along with its adoption<</p> <p>Application Security Champions Program Establish and manage a program to spread security knowledge and responsibility<</p> <p>Training and Awareness Provide training on secure coding practices and security awareness build security champions within teams<</p> <p>Framework Integration Use frameworks like DSOM to guide and improve security practices develop a custom maturity and security assessment framework<</p> <p>Policy Development Define document and communicate application security standards and policies<</p> <p>Policy Evaluation and Improvement Assess and recommend improvements for existing policies and tools<</p> <p>Mature Secure SDLC Practices and Tools Enhance secure SDLC practices including threat modeling and security test automation<</p> <p>App Security Compliance Metrics Incident Monitoring and Tracking Ensure compliance track metrics and monitor security incidents<</p> <p>Security Tooling Implement and manage tools for staticdynamic analysis vulnerability scanning and penetration testing<</p> <p>Security Testing Guidance and Approach Definition Define build and guide security testing approaches both automated and manual<</p> <p>DevOps Integration Integrate security practices into CICD pipelines with DevOps teams</p> <p>Incident Response Lead incident response including investigation mitigation and postincident analysis</p> <p>Collaboration Work with architecture development and operations teams to integrate security into the SDLC</p> <p>Risk Management Identify assess prioritize and mitigate security risks</p> <p>Continuous Improvement Stay updated on security trends and continuously improve security practices</p> <p>Qualifications</p> <p>Education Bachelors degree in Computer Science Information Security or a related discipline Relevant certifications eg CISSP CEH OSCP are a plus</p> <p>Technical Skills Proficiency in onpremcloud security tools and technologies such as static and dynamic analysis tools vulnerability scanners and penetration testing frameworks</p> <p>Knowledge Strong understanding of secure coding practices OWASP Top Ten and common security vulnerabilities App Sec security tooling frameworks and methodologies</p> <p>Collaboration Communication excellent communication skills with the ability to convey complex security concepts to technical and nontechnical audiences Collaborates with varied stakeholders and is proactive in communication<</p> <p>Problemsolving Strong analytical and problemsolving skills with a proactive approach to identifying and addressing security issues</p> <p>Hartford - Connecticut - USA8 - 12 Years10R11-Feb-2026NACTIVE1438949</p> <p>Mandatory Skills : Application Security - Microfocus Fortify-SCA and SAST, Application Security - Microfocus Fortify DAST</p>