Application Security Manager (m/f/d)

DHL Express - a company that connects people!

What makes DHL great? Our People! We know each employee's individual contributions make us the #1 Express Delivery and Logistics Company in the world.

Distinguished as No.1 World's Best Workplace™ by Great Place to Work and Fortune Magazine DHL Express is committed to maintaining an environment that empowers every team member to make the greatest possible impact on our business. Our corporate culture is about personal commitment — to our business, to each other and to our global communities. DHL is dedicated to being a great place to work. Start YOUR career with DHL today...

Application Security Manager assures the application security practices throughout the lifecycle of applications development by performing source code review, manual application security assessment, operation and integration of automated security assessment solutions, architecture review, and expert advice regarding software security trends, threats, best practices, and incidents. The role is responsible in Developing and implementing security policies that cover the entire software development lifecycle (SDLC).

The role involves in implementing security testing techniques tools and methodologies (OSSTMM and OWASP Top 10, OWASP ASVS, SANS) and has familiarity with secure SDLC practices, CI/CD pipelines, and DevSecOps principles.

• Support implementation of Cyber Security Program (Cyber Security Expertise Center) in DHL Express.
• Provide technical mentorship and expertise to team in key areas such as Cloud Security, web application security, anti-bot technologies, DevSecOps, CI/CD security, and secure coding practices.
• Deliver Application Security Assessment activities with entities within DHL Express and external suppliers/customers.
• Manage and run in-depth assessments on the applications using SAST, DAST, SCA, Penetration Testing, Red Teaming Activities to determine application security posture and potential vulnerabilities.
• Provide input guidance to the design and development of solutions selected from the cyber security counter measure plan by conducting Threat Modelling on the applications.
• Ensure that appropriate security counter measures and plans are developed by Business IT, IT Services and its IT service suppliers.
• Indirect support of Corporate Functions (Security, Compliance, Data Protection) and external customers/suppliers for cyber security related request.
• Report the effectiveness of DHL Express cyber security readiness to technical asset owner with explicit focus on high risk / high impact threats/vulnerabilities/incidents and actions being taken for mitigation.
• Provide support to the Risk/Compliance/Audit function on DHL Express cyber risk exposures.
• Provide input to the design and development of management practices and solutions selected from the cyber security counter measure plan.
• Develop and deliver Cyber Security best practices/processes/tool.
• Work with global, regional and country stakeholders to support the cyber security reviews.

• Minimum 8 years' experience in Information or Cyber Security, preferably in Applications Security Assessment role.
• University Degree in Computer Science or Information Systems or equivalent education.
• DevSecOps, CI/CD methodology, Application Security Automation experience required.
• Formal information security accreditations (e.g. OSCP, CISSP, CISM, CISA, CRISC or equivalent experience).
• Fluent in both spoken and written English.

Please submit your application along with your CV and a copy of your highest educational degree (e.g., Bachelor's, Master's, or MBA certificate).

DHL is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected characteristic.