Bayer
Lead Cyber Security Architect AppSecSpec Join to apply for the Lead Cyber Security Architect AppSecSpec role at Bayer . Get AI-powered advice on this job and more exclusive features. At Bayer, we're visionaries, driven to solve the world's toughest challenges and striving for a world where 'Health for all, Hunger for none' is no longer a dream but a reality. We're doing it with energy, curiosity, and dedication, always learning from diverse perspectives, expanding our thinking, growing our capabilities, and redefining the impossible. If you're eager to build a meaningful career in a community of brilliant minds to make a real difference, Bayer is the place for you. Purpose This role involves defining and assessing Bayer's application security strategy, technical architecture, and practices. It translates business objectives and risk strategies into specific security controls, providing advanced technical security architectural design for complex applications and platforms. Your Tasks and Responsibilities Participate in tool selection, configuration, and remediation guidance for DevSecOps scanning tools (e.g., DAST, SAST, SCA). Perform security architecture reviews, threat modeling, and assist DevOps teams with risk-based remediation strategies. Create and deliver awareness and training on secure coding and CI/CD pipeline security strategies, aligning with other departments. Mentor teams on application security tactics, patterns, and practices. Assess practice maturity in application development and provide guidance for improvement. Conduct code reviews focusing on security concerns in modern development stacks (e.g., Node.js, Python, Java, SQL). Contribute to automation efforts using scripting technologies and source code management. Utilize Bayer's Security Controls Framework to ensure controlled and rational security solutions across domains like network, cloud, application, platform, and AI security. Design cybersecurity solutions addressing specific threats, oversee security technology deployment, and ensure compliance with legal and regulatory frameworks. Align IT security requirements with business goals using frameworks like TOGAF and SABSA; embed security into SDLC phases. Create and maintain Security Standards and Architecture Patterns to promote secure business practices. Provide advanced guidance on secure system design, configuration, and implementation. Stay updated on emerging threats, vulnerabilities, and technologies, recommending proactive security measures. Lead cybersecurity initiatives across Bayer, focusing on risk management and security architecture. Who You Are Bayer seeks candidates with: Required Qualifications Bachelor's or Master's in IT, cybersecurity, computer science, or related; relevant experience may suffice. Experience with application security frameworks (e.g., OWASP ASVS, NIST 800-218). Extensive experience in cybersecurity architecture, risk management, and secure DevOps design. Deep knowledge of cybersecurity principles, IT infrastructure, and data storage. Proven risk assessment and mitigation skills. Excellent communication skills for articulating policies and risks. Creative and critical thinking for complex security challenges. Familiarity with cybersecurity standards like CIISec Skills Framework and NCSC guidelines. Ability to build partnerships across functions and divisions. Preferred Qualifications 6+ years in application security, DevSecOps, or product security; software engineering experience is a plus. Professional certifications such as CISSP, CISM, or NCSC-recognized credentials are highly regarded. Salary range: $140,200 - $210,300, with potential bonuses and benefits. Compensation varies based on location, experience, and qualifications. Your Application Interested candidates should submit their application at www.career.bayer.cn . For referrals, email cnreferral@ . Location: Missouri, USA (Residency-based or Creve Coeur) Division: Enabling Functions Reference Code: 844944 Additional Details Seniority Level: Mid-Senior level Employment Type: Full-time Job Functions: Engineering and IT Industries: Chemical, Pharmaceutical, Biotechnology #J-18808-Ljbffr