Apply now »

Lead Application Security Architect

Hungerford, England, GB, RG17 0YL


Accelerate Your Career

Drive global technology

We’re a global market leader in providing software and digital marketing solutions to the automotive industry. We’re innovating the way that automotive dealerships drive their customers’ car-buying experience from the moment they run a search online all the way through to bringing their car back in for a service. Join us and be a part of the evolution.

We’re large enough to make a difference but small enough for your voice to be heard. This means that we are an organisation where every person matters. You can make an impact on the success of our business and that of our customers regardless of what career you decide to pursue.

What will you be doing?

Our product security function has an exciting Lead Application Security Specialist opportunity where the selected candidate will be instrumental in defining application and product security requirements both operationally and strategically. The individual will partner with both the CDK R&D and Product organizations to build security by design in to CDK products and services during the Software Development Lifecycle and while existing products are operational.


You’ll be using your experience to work closely with the development teams across CDK to help them to understand the risks associated with application vulnerabilities and to guide them in the correct ways to remediate those risks. In addition you will be expected to get involved in early stage product development and make recommendations to the product teams about how applications should be architected to be secure by design from the outset.


With a balance of technical and business capabilities the individual will be equally adept at talking technical remediation with the development teams and understanding the need to influence business and product owners about the importance of security and risk reduction. 
With a can-do attitude and a drive to make a difference were looking for someone who can add even more energy and positivity to an established Product Security program


Skills and experience


  • 3-4 years experience working in or leading an application security function within a software application technology business.
  • Experience working with both cloud –based and on premise technology software products and applications
  • Experience working in partnership with R&D organizations to influence and build productive partnerships
  • Experience working in a diverse global organization
  • Advanced working knowledge of technology to control and safeguard the collection, organization, structure, processing and delivery of data
  • Must have an in-depth knowledge across of a broad spectrum of IT services and solution technologies        
  • Strong knowledge of enterprise architecture concepts and tools.        
  • Cloud Architecture and how applications/data can be managed and secured in the cloud as well as integration patterns to support hybrid implementation patterns        
  • Demonstrated practice of keeping current with new and emerging tools and technologies relevant to Enterprise Architecture        
  • Use logic and reason to identify the strengths and weaknesses of alternative solutions, conclusions or approaches to problems        
  • Collaborate with people at different levels within the organization to accomplish a common goal


Key Duties & Responsibilities 


  • Understand the architecture of applications including creating a threat model and identifying appropriate security controls and partnering with the development and product teams to determine proportionate controls.        
  • Strong knowledge on application security vulnerabilities OWASP top 10 and experience with the SAST tools like Checkmarx, DAST tools like Burpsuite Pro, OWASP ZAP, and WhiteHat Sentinel, and network vulnerability discovery tools such as Rapid7 Nexpose.       
  • Improving and maintaining secure development standards in both Agile and Waterfall environments.        
  • Work with development and testing community, providing SME advice to understand and remediate coding vulnerabilities of applications implemented in various programming languages.        
  • Aid in the development and creation of application / product security polices and standards to ensure that security in built by design in to new products and services.        
  • Aid in security advocacy to our customers and partners, help to tell the story about how CDK builds security in to the design of our products and services.



Why a career with CDK Global?

We demand diversity. Our people may be spread across countries, continents and cultures, but we’re united by a passion and enthusiasm to drive our business forward. This means no matter where you work you’ll feel like part of our global team. Diverse backgrounds, ideas and experiences are the only way to deliver world-class service to our customers. Our differences are our strengths

Your benefits. To help us attract and retain the best, we pay people according to performance, not length of service. We will also help you grow your career, not only through focused investment in learning and development but also by enabling you to explore the exciting opportunities our global market has to offer.

The perfect opportunity awaits. Start your career with CDK Global.

Apply now »