Application Security Specialist – Ict – Level 8 (3 Posts)
Ict & Computer Jobs
Job Description
Applications are invited from suitably qualified persons to fill the following posts within the Zimbabwe Revenue Authority (ZIMRA) – an equal opportunity employer.
Duties and Responsibilities
Key Responsibilities
▪ Implement and monitor application security controls, including secure coding standards, vulnerability scanning and patch validation
▪ Classify, prioritise and resolve application security alerts; document known errors and conduct trend analysis
▪ Maintain application security documentation, evidence trails and compliance artefacts in line with ICT Policy and regulatory standards
▪ Identify application vulnerabilities, escalate unresolved threats and recommend mitigation measures to the Security Architecture Manager
▪ Maintain inventories of enterprise applications, validate patch levels and ensure secure configurations
▪ Document lessons learned from application incidents, update secure coding guidelines and contribute to the governance knowledge base
▪ Apply application security standards, conduct peer reviews and embed continuous improvement practices; maintain peer review compliance
▪ Mentor developers, graduate trainees and interns in secure coding practices; contribute to skills development and maintain skills matrix updated quarterly
▪ Escalate systemic threats, recommend mitigation measures, maintain risk register updates and track mitigation actions
▪ Participate in cybersecurity drills, red team/blue team exercises and disaster recovery simulations;
▪ Any other duties as may be assigned by the Security Architecture Manager.
Qualifications and Experience
Job Skills and Competencies
▪ Proficiency in application security testing tools (e.g., OWASP ZAP, Burp Suite, Veracode). ▪ Demonstrate knowledge of secure coding practices across languages (Java, .NET, PHP, Python).
▪ Experience working in multi-disciplinary teams (IT, Risk, Audit, Compliance) to ensure coordinated response.
▪ Self-starter with ability to work under pressure, including in 24/7 monitoring environments
▪ Strong communication and presentation skills along with the ability to work in a highly collaborative environment
▪ Ability to plan and exceptional time management skills ▪ Ability to work with minimum supervision.
▪ Good organizational and people management skills.
Qualifications and Experience
▪ A graduate Degree in Computer Science or Information & Communication Technology or equivalent qualification.
▪ Must have at least one of the following Certification: CISA; CISM; CISSP; Certified Secure Software Lifecycle Professional (CSSLP); OWASP Application Security Verification Standard (ASVS) Practitioner; or a comparable security certification.
▪ Minimum of three (3) year experience in ICT of which One (1) year should be in ICT security, application development, application security or Software Development Assurance areas
How to Apply
Interested candidates should submit applications, accompanied by a detailed Curriculum Vitae by 19 May 2026. All applications should be emailed to ZimraRecruitment@zimra.co.zw with the position title clearly stated in the email subject line, e.g. Head ICT Operations & Service Delivery – ICT Level 5. The applications should be
addressed to:
Director Human Capital
Zimbabwe Revenue Authority
6th Floor ZB Centre
Corner First Street / Kwame Nkrumah Avenue
P. O. Box 4360
HARARE
Please note that only shortlisted applicants will be responded to and females are encouraged to apply.