At a Glance
- Tasks: Design and implement security controls for a major banking client in a dynamic environment.
- Company: Join a leading banking client focused on DORA transformation in Brussels or Paris.
- Benefits: Hybrid working model with competitive salary and professional growth opportunities.
- Other info: Opportunity to work in a fast-paced, evolving environment with excellent career prospects.
- Why this job: Make a real impact on application security while collaborating with diverse teams.
- Qualifications: 5-10 years in information security with expertise in software supply chain and cybersecurity frameworks.
The predicted salary is between 60000 - 80000 £ per year.
We are looking for an experienced and dynamic Senior Security Analyst to support DORA transformation through the design, implementation and embedding of new transversal security controls across the organization.
Responsibilities
- Embed & operationalise new security controls by working with IT, Engineering, Architecture and CISO teams to integrate them into existing processes, tools and platforms.
- Support teams in understanding threats, risks and compliance expectations related to software supply chain, cryptography and application security.
- Identify gaps between current capabilities and new DORA requirements and provide actionable remediation recommendations.
- Contribute to the rollout, adoption and continuous improvement of newly introduced security controls.
- Perform targeted security assessments on applications, processes and technical components to evaluate compliance with the new security controls.
- Map system architectures, technology stacks and data flows to validate control applicability.
- Provide expert-level advisory on secure implementation across different environments (on-prem, mainframe, cloud).
- Collaborate closely with architects, engineers, developers, risk teams and control owners to support remediation plans and technical decisions.
Qualifications
- 5-10 years hands-on experience designing or implementing information security controls, frameworks or processes.
- Proven experience in security risk assessment, application security or security governance.
- Strong expertise in at least several of the following areas: Software Supply Chain Security, SBOM management, Code integrity and build pipeline security, SAST/DAST/code analysis/ASPM, Data classification, Database encryption & key management, Cryptography governance & implementation.
- Solid knowledge of cybersecurity frameworks (ISO 27001, CIS, NIST, DORA).
- Good understanding of financial-sector IT security regulatory requirements, especially DORA, ESMA and outsourcing regulation (plus).
- Fluency in English.
- Certifications such as CISSP, CSSLP, CCSP, CISM, CISMP, GCIH, CEH are an advantage.
Soft Skills
- Strong communication and coordination skills; ability to engage effectively with stakeholders across diverse teams (Supply Chain, CISO, IT, etc.).
- Proactive, self-motivated and comfortable working in a dynamic, continuously evolving environment.
- Strong analytical capabilities combined with creative problem-solving skills.
- Structured and synthetic, able to deliver clear, concise and relevant responses to requests.
- Calm, organized and efficient under pressure, maintaining clarity even in uncertain situations.
- Collaborative mindset; able to work effectively with executives, business leaders and technical teams.
- Autonomous, well-organized with strong prioritisation and time-management abilities.
Application Security & Controls Specialist (DORA Programme) employer: Salt Digital Recruitment
Join a leading banking client in Brussels or Paris as a Senior Application Security & Controls Specialist, where you will be part of a dynamic team dedicated to enhancing security measures within the financial sector. Enjoy a hybrid working model that allows for flexibility, with only 8 days required onsite each month, fostering a work culture that values collaboration and innovation. With ample opportunities for professional growth and development, this role offers a meaningful chance to contribute to critical security initiatives while working in a supportive environment that prioritises employee well-being.
StudySmarter Expert Advice🤫
We think this is how you could land Application Security & Controls Specialist (DORA Programme)
✨Network Like a Pro
Get out there and connect with people in the industry! Attend meetups, webinars, or even just grab a coffee with someone who works in application security. Building relationships can open doors that a CV just can't.
✨Show Off Your Skills
When you get the chance to chat with potential employers, don’t hold back! Share your experiences and how you've tackled security challenges in the past. Real-life examples can make you stand out from the crowd.
✨Tailor Your Approach
Every company is different, so do your homework! Understand their specific needs and challenges related to DORA and application security. This way, you can tailor your conversations to show how you can help them succeed.
✨Apply Through Us!
Don’t forget to apply through our website! We’re always on the lookout for talented individuals like you. Plus, it gives us a chance to see your application in the best light possible.
We think you need these skills to ace Application Security & Controls Specialist (DORA Programme)
Some tips for your application 🫡
Tailor Your CV:Make sure your CV speaks directly to the role of Application Security & Controls Specialist. Highlight your experience with security controls and frameworks, and don’t forget to mention any relevant certifications you have!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about application security and how your skills align with the DORA Programme. Keep it engaging and personal – we want to see your personality!
Showcase Your Experience:When detailing your past roles, focus on specific projects or achievements that relate to the responsibilities listed in the job description. We love seeing concrete examples of how you've tackled security challenges in the past.
Apply Through Our Website:We encourage you to apply through our website for a smoother process. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen to join our team!
How to prepare for a job interview at Salt Digital Recruitment
✨Know Your Security Frameworks
Make sure you brush up on your knowledge of cybersecurity frameworks like ISO 27001, CIS, and NIST. Be ready to discuss how these frameworks apply to the DORA requirements and how you've implemented them in past roles.
✨Showcase Your Technical Skills
Prepare to talk about your hands-on experience with application security controls and risk assessments. Highlight specific projects where you've successfully integrated security measures into software supply chains or cloud environments.
✨Communicate Clearly
Since this role involves collaboration with various teams, practice articulating complex security concepts in a clear and concise manner. Think of examples where you've effectively communicated with stakeholders to drive security initiatives.
✨Be Ready for Problem-Solving Scenarios
Expect to face hypothetical scenarios during the interview. Prepare to demonstrate your analytical and creative problem-solving skills by discussing how you would address gaps in security controls or compliance issues.
