A major international organization is looking for a Medior Application Security Engineer to strengthen its Application Security & Vulnerability Management team. The role exists to improve secure software development practices across IT teams and support the adoption of secure development and DevSecOps methodologies in a fast-evolving distributed development environment.
To be considered for an interview, please make sure your application is full in line with the job specs as found below.
Responsibilities
Manage requests from development squads regarding application security tooling setup
Perform secure code reviews using SAST tools
Review third-party libraries and dependencies using SCA tooling
Support development teams in secure development and DevSecOps adoption
Prepare and deliver training sessions on application security topics
Coach teams on the usage of security tools
Maintain infrastructure supporting automated code reviews and open-source evaluations
Maintain and update security and compliance policies
Monitor and report security evaluation results
Keep development security guidelines up to date
Review vulnerabilities and security defects
Create and maintain vulnerability reporting dashboards
Contribute as an application security expert in security-related projects and changes
Support developers in mitigating security risks and incidents
Provide input for new security controls and detection mechanisms
Must have
Experience in software application development
Strong interest in application security
Good understanding of Agile, DevOps, and SDLC practices
Knowledge of security checks throughout the software development lifecycle
Familiarity with tools and platforms such as Jenkins, GitLab, Maven, and Docker
Good understanding of network security concepts
Interest or first experience in penetration testing
Very good English communication skills
Strong communication and analytical skills
Ability to work autonomously in a multicultural xlxgzvr environment
Should have
Knowledge of secure development practices
Understanding of mobile application development and testing challenges
Experience supporting or coaching technical teams
Experience with vulnerability management processes
Knowledge of SAST and SCA tooling
Dutch or French language skills
Nice to have
Experience in highly regulated industries such as banking, pharma, aviation, military, or nuclear sectors
Experience creating technical training content
Basic scripting or automation experience
Previous exposure to security operations or incident handling
#J-18808-Ljbffr