Pactiv Evergreen Inc. (NASDAQ: PTVE) is a leading manufacturer and distributor of fresh foodservice and food merchandising products and fresh beverage cartons in North America and certain international markets. It supplies its products to a broad and diversified mix of companies, including full service restaurants and quick service restaurants, foodservice distributors, supermarkets, grocery and healthy eating retailers, other food stores, food and beverage producers, food packers and food processors. To learn more about the company, please go to the company website at pactivevergreen.com.
Pactiv Evergreen is committed to a diverse and inclusive workforce. Pactiv Evergreen is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, sex (including pregnancy), sexual orientation, religion, creed, age national origin, physical or mental disability, genetic information, gender identity and/or expression, marital status, veteran status or other characteristics or statuses protected by law. For individuals with disabilities who would like to request an accommodation, please call (847) 482-4320 or email TalentHelp@Pactiv.com.
All information will be kept confidential according to EEO guidelines and applicable laws.
ResponsibilitiesRESPONSIBILITIES
The Application Security Architecture responsibility is to design and implement robust security architectures and frameworks for applications. You will play a crucial role in ensuring the confidentiality, integrity, and availability of software applications by identifying and mitigating potential security risks. You will work closely with development teams, system administrators, and other stakeholders to define and enforce secure coding practices and standards.
DUTIES AND RESPONSIBILITIES Security Architecture Design: Design and develop comprehensive security architectures for applications, considering various security aspects such as authentication, authorization, encryption, input validation, secure communication, and access controls.Threat Modeling: Perform threat modeling exercises to identify potential security vulnerabilities and risks within the application architecture. Analyze the impact of identified threats and propose appropriate mitigation strategies.Secure Coding Practices: Define and enforce secure coding practices and guidelines for development teams. Provide guidance on best practices for secure coding, input validation, and secure configuration management.Security Testing: Collaborate with quality assurance teams to incorporate security testing methodologies, including vulnerability assessments, penetration testing, and code reviews. Review and interpret security testing results to identify and address potential security weaknesses.Security Standards and Compliance: Ensure that applications adhere to relevant security standards, frameworks, and regulatory requirements (e.g., OWASP, ISO 27001, GDPR, PCI-DSS). Stay updated with the latest security trends, vulnerabilities, and industry best practices.Security Incident Response: Contribute to the development of incident response plans and provide technical expertise during security incidents or breaches. Assist in forensic investigations to identify the root cause and recommend remediation measures.Security Awareness and Training: Conduct security awareness sessions and training programs for development teams and other stakeholders to enhance their understanding of application security principles and best practices.Collaboration and Documentation: Collaborate with cross-functional teams to ensure security considerations are integrated into the entire software development lifecycle. Document security requirements, architecture designs, and guidelines for reference and knowledge sharing. Qualifications QualificationsBachelor's or Master's degree in Computer Science, Information Security, or a related field.Solid experience (10+ years) in application security architecture, secure coding practices, and secure development lifecycle.Strong understanding of application security concepts, principles, and best practices.Proficiency in security frameworks, such as OWASP Top 10, SANS CWE, and NIST.Knowledge of security technologies, tools, and methodologies for vulnerability scanning, code analysis, and penetration testing.Familiarity with secure development frameworks, such as Microsoft SDL, BSIMM, or OpenSAMM.Experience with cloud-based application security and knowledge of relevant security controls and services (e.g., AWS, Azure).Strong analytical and problem-solving skills with the ability to assess complex application architectures and identify security risks.Excellent communication and interpersonal skills to collaborate with technical and non-technical stakeholders.Relevant certifications (e.g., CISSP, CSSLP, GIAC) are a plus. Options Apply for this job onlineApplyShareEmail this job to a friendRefer Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeed Application FAQsSoftware Powered by iCIMS
www.icims.com