The Pepperstone story started in 2010. We know what it's like to trade the world's markets. Our team describes us as a place for the curious and the driven, and we like to do things a little differently; as a transformative global fintech we're digital, nimble, connected, and united in our vision to create a better way to trade.We thrive on progress – for our clients and for ourselves. Our organisational culture is ever-evolving, vibrant, diverse, global and results focused. You'll find our 350+ team currently across 9 locations and 6 time zones.The RoleOur technology team thrives on inclusivity and collaboration, believing that diverse perspectives lead to great solutions. We foster a culture that champions individual growth, professional development, and work-life harmony. We're invested in your success and dedicated to supporting you every step of the way. We encourage our team to bring challenge thinking and fresh ideas to the table and our Agile approach empowers us to focus on outcomes. When we hire someone it's because they bring the skills, attitude and experience we're looking for....so we let you do what you're best at! Join us and be part of a community that's passionate about harnessing technology's potential to drive market leading solutions for our clients. Elevate your career in an environment where your ideas matter, your growth is nurtured, and your potential is limitless.The primary purpose of this role is to lead and enhance our application security program. The Application Security Manager will lead the application security function, manage the application security team, and work closely with the Head of IT Security and Development Leaders to build a comprehensive security program. This includes setting strategic and tactical goals for the application security function, preparing an implementation roadmap, and integrating shift-left security principles into the CI/CD pipeline. The role involves delivering and supporting application security tools for development teams, guiding development teams in application security topics, and ensuring compliance with application security standards.As our Application Security Manager, your key responsibilities include, but may not be limited to:Collaborate with the Head of IT Security and Development Leaders to develop the application security continuous program, including strategic and tactical goals, and prepare the enrolment roadmap.Develop and implement processes to integrate shift-left security principles into the CI/CD pipeline in close collaboration with Development Leaders and teams.Deliver and support application security tools for development teams.Work closely with development teams to provide guidance on security practices and serve as the primary contact for application security matters.Develop and enforce application security standards to ensure compliance.Conduct regular security assessments of Pepperstone's self-developed products and workflows to ensure adherence to security principles.Lead the application security function and the application security team.Provide training and support to development teams on application security tools and best practices.Promote a security-aware culture by working closely with development teams and other stakeholders.About youMinimum of 5 years of experience in a similar role.Excellent communication and collaboration skills with the ability to interact effectively with IT Department team leads and functions managers.Proven experience in building and implementing application security processes and practices.Strong analytical skills with the ability to build working processes.Strong knowledge and practical experience in the application security field, applicable tools, and best practices.Strong understanding of secure coding practices and security testing methodologies.Familiarity with application security tools (e.g., SAST, DAST, IAST, SCA).Familiarity with industry standards and regulations (e.g., OWASP, NIST, ISO/IEC 27001).Hands-on development experience with proficiency in one or more programming languages (e.g., Java, Python, C#).Leadership experience, with the ability to manage and mentor a team.Experience with IT risk management and IT/InfoSec controls and measures implementation.Experience using visualization tools to create infographics, block schemas, diagrams, and process flows would be a plus.Information Security certifications (CSSLP, CISSP, CISM, etc.) would be a plus.Why you will enjoy working with usCompetitive salary structure including company bonus schemeGenuinely collaborative and friendly cultureFlexible and hybrid workingRemote working option - work from anywhere for up to 6 weeks per year, in addition to hybrid working as standardOngoing personal development & learning opportunities15 weeks paid primary carers parental leave & 4 weeks paid secondary carers leave3 paid volunteering days per year & Workplace Giving ProgramFrequent events and celebrations including a standard weekly socialBeautifully renovated large office at Collins Square - 727 Collins Street, MelbourneBest in class end of trip facilities including bicycle parking, change rooms & showersA full stocked kitchen, onsite coffee machines with locally sourced coffee beans (this is Melbourne after all) and curated specialty teasAbout PepperstoneWe're a regulated online Forex and CFD trading platform. With the scale of a global fintech and the agility of a start-up, we arm our clients with everything they need to take on the global markets with confidence. You will be part of a wider passionate and friendly team, and whilst things may not always go to plan, we learn quickly and move forward with impact.Pepperstone is an equal opportunity employer. We are passionate about building a diverse workplace and strongly encourage applications from any background."We are a 2023 Circle Back Initiative Employer – we respond to every applicant".We will be reviewing applications as they come through, so if this is an opportunity that excites you, don't wait. Express your interest by clicking the apply button below as soon as possible.
#J-18808-Ljbffr