Job Information
Liberty Latin America IT Security - Associate Manager - Application Security in Panama
What's The Role
The Associate Manager - Application Security will play a key role in directing and executing the AppSec program for the company. This individual will be expected to set the overall direction and strategy of this program to include: integration with the SDLC (i.e. security review of design, QA testing, final product, etc.), influencing internal development organizations throughout the company, serve as a subject matter expert in application security to our systems architecture teams to address design and requirements questions, perform and facilitate both internal and third party penetration testing activities, and secure coding training.
What You'll Do
Theassociate manageroftheapplicationsecurityprogramwillberesponsiblefor:
Integratingsecuritytools,standards,andprocessesintothe software development lifecycle (SDLC).
EnsuringthatdevelopersandQApersonnelaretrainedwith theappropriatelevelofsecurityknowledgetoperformtheir dailyactivities.
Improvingandsupportingapplicationsecuritytool deploymentsincludingstaticanalysisandruntimetesting tools.
Improvingandmaintainingsecuredevelopmentstandards.
Supportingtheincidentresponseandarchitecturereview processeswheneverapplicationsecurityexpertiseisneeded.
Managingannualpenetrationtestingservices,includingboth expertconsultingandmanagedservices.
Providingmanualpenetrationtestingandstandardsgap analysisservicestointernalbusinessandtechnologypartners.
Managingapplicationframeworkandperimetersecurity improvementprojects.
SupportingVendorSecurityactivitiestoensure3rd‐party softwareanddevelopmentmeetsPayPalsecuritystandards.
Integratingthreatmodelingpracticesintotheproductlife cycle.
Providingsecurityrequirementsfortest‐drivendesign.
Producingmetricsreportingthestateofapplicationsecurity programsandperformanceofdevelopmentteamsagainst requirements.
What Do You Need
Bachelor’s degree in Computer Science, Information Technology, or related field.
Proven experience (3 years) in application security or related roles.
In-depth understanding of security frameworks (e.g., NIST, ISO 27001) and Secure Software Development Lifecycle Process (S-SDLC).
Proficiency in using security testing tools such as Veracode, Sonarqube, etc..
Strong analytical and problem-solving skills, with the ability to think strategically and prioritize tasks in a high-pressure environment.
Excellent communication and interpersonal skills, with the ability to effectively interact with diverse stakeholders.
Experience leading incident response teams and managing complex cybersecurity incidents from detection to resolution.
Knowledge of legal and regulatory requirements related to cybersecurity and incident response.
Ability to work collaboratively in a cross-functional team environment and provide mentorship and guidance to junior staff members.
Ability to communicate fluently in English and Spanish.
Who We Are
We are the leading telecommunications company, connecting more than 40 markets in Latin America and the Caribbean with our video, broadband internet, telephony, and mobile services under the consumer brands, Flow, Liberty, Más Móvil, BTC, and Cabletica. We started small, and now we’re growing. We’re excited about the future as we strive to unlock opportunities in the region.
Why join us
Technology excites us enables us and drives us. We´re proud of the services we provide, the markets that we serve, and our people coming together to enhance our customers´ lives with technology so that they can connect, work, live and play without missing beat. Throughout Liberty Latin America, our passion and pride are brought to life through our shared vision to bring innovation that will create moments that matter to our customers, delivering growth in our markets with one vision, one culture, and one team.
Liberty Latin America provides equal employment and advancement opportunities to all colleagues and applicants for employment without regard to age, color, citizenship, disability or perceived disability, ethnicity, gender, gender identity or expression, genetic information, marital or domestic partner status, military or veteran status, national origin, pregnancy/childbirth, race, religion, sexual orientation, or any other category protected by federal, state, and/or local laws.
What Do You Need
Bachelor’s degree in Computer Science, Information Technology, or related field.
Proven experience (3 years) in application security or related roles.
In-depth understanding of security frameworks (e.g., NIST, ISO 27001) and Secure Software Development Lifecycle Process (S-SDLC).
Proficiency in using security testing tools such as Veracode, Sonarqube, etc..
Strong analytical and problem-solving skills, with the ability to think strategically and prioritize tasks in a high-pressure environment.
Excellent communication and interpersonal skills, with the ability to effectively interact with diverse stakeholders.
Experience leading incident response teams and managing complex cybersecurity incidents from detection to resolution.
Knowledge of legal and regulatory requirements related to cybersecurity and incident response.
Ability to work collaboratively in a cross-functional team environment and provide mentorship and guidance to junior staff members.
Ability to communicate fluently in English and Spanish.
Who We Are
We are the leading telecommunications company, connecting more than 40 markets in Latin America and the Caribbean with our video, broadband internet, telephony, and mobile services under the consumer brands, Flow, Liberty, Más Móvil, BTC, and Cabletica. We started small, and now we’re growing. We’re excited about the future as we strive to unlock opportunities in the region.
Why join us
Technology excites us enables us and drives us. We´re proud of the services we provide, the markets that we serve, and our people coming together to enhance our customers´ lives with technology so that they can connect, work, live and play without missing beat. Throughout Liberty Latin America, our passion and pride are brought to life through our shared vision to bring innovation that will create moments that matter to our customers, delivering growth in our markets with one vision, one culture, and one team.
Liberty Latin America provides equal employment and advancement opportunities to all colleagues and applicants for employment without regard to age, color, citizenship, disability or perceived disability, ethnicity, gender, gender identity or expression, genetic information, marital or domestic partner status, military or veteran status, national origin, pregnancy/childbirth, race, religion, sexual orientation, or any other category protected by federal, state, and/or local laws.
What You'll Do
The associate manager of the application security program will be responsible for:
Integrating security tools, standards, and processes into the software development lifecycle (SDLC).
Ensuring that developers and QA personnel are trained with the appropriate level of security knowledge to perform their daily activities.
Improving and supporting application security tool deployments including static analysis and runtime testing tools.
Improving and maintaining secure development standards.
Supporting the incident response and architecture review processes whenever application security expertise is needed.
Managing annual penetration testing services, including both expert consulting and managed services.
Providing manual penetration testing and standards gap analysis services to internal business and technology partners.
Managing application framework and perimeter security improvement projects.
Supporting Vendor Security activities to ensure 3rd‐party software and development meets PayPal security standards.
Integrating threat modeling practices into the product life cycle.
Providing security requirements for test‐driven design.
Producing metrics reporting the state of application security programs and performance of development teams against requirements.