What makes DHL great? Our People! We know each employee's individual contributions make us the #1 Express Delivery and Logistics Company in the world.
Distinguished as No.1 World's Best Workplace™ by Great Place to Work and Fortune Magazine DHL Express is committed to maintaining an environment that empowers every team member to make the greatest possible impact on our business. Our corporate culture is about personal commitment - to our business, each other, and our global communities. DHL is dedicated to being a great place to work.
Start YOUR career with DHL today...
Role Purpose
The Application Security Manager assures the application security practices throughout the lifecycle of application development by performing source code review, manual application security assessment, operation and integration of automated security assessment solutions, architecture review, and expert advice regarding software security trends, threats, best practices, and incidents. The role is responsible for Developing and implementing security policies that cover the entire software development lifecycle (SDLC). Application Security Manager involved in implementing security testing techniques tools and methodologies (OSSTMM and OWASP Top 10, OWASP ASVS, SANS) and has familiarity with secure SDLC practices, CI/CD pipelines, and DevSecOps principles.How will you contribute to the success of DHL?
• Support implementation of the Cyber Security Program (Cyber Security Expertise Center) in DHL Express.
• Provide technical mentorship and expertise to the team in key areas such as Cloud Security, web application security, anti-bot technologies, DevSecOps, CI/CD security, and secure coding practices.
• Deliver Application Security Assessment activities with entities within DHL Express and external suppliers/customers.
• Manage and run in-depth assessments on the applications using SAST, DAST, SCA, Penetration Testing, and Red Teaming Activities to determine application security posture and potential vulnerabilities.
• Provide input guidance to the design and development of solutions selected from the cyber security countermeasure plan by conducting Threat Modelling on the applications.
• Ensure that appropriate security countermeasures and plans are developed by Business IT, IT Services, and its IT service suppliers.
• Indirect support of Corporate Functions (Security, Compliance, Data Protection) and external customers/suppliers for cybersecurity-related requests.
• Report the effectiveness of DHL Express cyber security readiness to technical asset owner with an explicit focus on high-risk / high-impact threats/vulnerabilities/incidents and actions being taken for mitigation.
• Provide support to the Risk/Compliance/Audit function on DHL Express cyber risk exposures.
• Provide input to the design and development of management practices and solutions selected from the cyber security countermeasure plan.
• Develop and deliver Cyber Security best practices/processes/tools.
• Work with global, regional, and country stakeholders to support the cyber security reviews.
Do you have what it takes?
• Educational Qualifications: University Degree in Computer Science or Information Systems or equivalent education.
• Minimum 8 years in Information or Cyber Security, preferably in an Applications Security Assessment role.
• Minimum 4 years experience in Vulnerability Assessment, Penetration Testing & Source Code Reviews, SCA of Web, Mobile and Thick Client Applications.
• Formal information security accreditation (e.g. CEH, OSCP, CISSP, CISM, CISA, CRISC, or equivalent experience).
• In-depth knowledge of Cyber Security practices and methodologies.
• Good security testing techniques tools and methodologies (OSSTMM and OWASP Top 10, OWASP ASVS, SANS).
• DevSecOps, CI/CD methodology, Application Security Automation experience required.
• Sound analytic and reasoning skills.
• Familiarity with cloud security tools, services, and platforms (e.g., Cloud Security Posture Management, Identity & Access Management, encryption).
• Broad IT service / technical knowledge Network/ Infrastructure/ OS/ Database/ Application/ Mobile App).
• Good organizational and cultural awareness.
• Minimum degree level or equivalent of relevant disciplines.
DHL is an equal-opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected characteristic.