SENIOR APPLICATION SECURITY ENGINEER
Descripción de la oferta de empleo
As a Senior Security Engineer, you will play a pivotal role in establishing and spearheading our company's appsec program, ensuring the security of our products and services.
You will be responsible for conducting comprehensive security assessments, identifying and remediating vulnerabilities, and collaborating with our product and tech teams to integrate security into the development lifecycle.
This is an opportunity for you to make a tangible impact on our company's security posture and contribute to the development of secure and reliable products.
Responsibilities.
Establish and manage the appsec program from scratch, defining policies, procedures, and tools to ensure the security of our applications Conduct comprehensive system design and architecture reviews, identifying insecure design elements and proposing secure alternatives Perform thorough code reviews on critical changes, ensuring adherence to secure coding practices Execute rigorous penetration testing (black, gray, whitebox) to uncover vulnerabilities and strengthen our defenses Collaborate with product and tech teams to prioritise vulnerabilities, verify fixes, and integrate security into the development process Drive the management of both Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) findings, ensuring optimized signal-to-noise ratios Perform threat modeling using techniques such as STRIDE to identify and mitigate potential security threats Partner with Product Managers to embed security requirements into product development Educate developers on secure code best practices, fostering a security-conscious culture within our engineering teams Background/Experience.
5+ years of experience in application security, with a proven track record of identifying and remediating vulnerabilities Strong understanding of secure coding practices, including OWASP Top 10 and SANS 25 Most Critical Software Errors Experience with static and dynamic application security testing tools Proficiency in penetration testing methodologies, including black-box, gray-box, and white-box testing Familiarity with threat modeling techniques such as STRIDE and PASTA Proficiency in Microsoft C# code and expertise in Cloud Security as a distinct advantage.
Bachelor's degree in Computer Science, Information Security, or a related field Soft skills.
Leadership.
Ability to guide and inspire teams towards a common security goal.
Perseverance.
A determination to tackle complex security challenges head-on.
Navigating Unstructured Environments.
Comfortable in dynamic and evolving settings.
Initiative.
Proactive in identifying and addressing security risks.
Autonomy.
Capable of driving initiatives independently.
Influence.
Skilled at persuading and leading without formal authority.
Conflict Resolution.
Adept at resolving disagreements to achieve consensus.
Self-Motivation.
Driven to excel and continuously improve.
Creative Thinking.
Capable of devising innovative security solutions.
Benefits Be part of one of the most prominent European Fintechs Competitive salary (up to 60 K) International carreer Hybrid job in sunny Barcelona!
Detalles de la oferta
- Sin especificar
- En toda España
- Sin especificar - Sin especificar
- 24/05/2024
- 22/08/2024
Ryf consultores cuenta con una posición como senior network engineer ccnp para ejecución de proyectos para el despliegue de nuevas soluciones de comunicaciones y ciberseguridad de último nivel en redes críticas para el sector petroquímico... funciones: despliegue de nuevas soluciones de comunicaciones......
Your profile: at least 3y of experience working as a qa automation engineer... are you a qa automation engineer looking for new challenge? we aspire to reach everyone and connect them to top projects... experience doing automation tests with python or java or javascript... you will participate in defining......
Electrical fv engineer bizkaiajob description: company dedicated to engineering, assembly and industrial maintenance... job description electrical engineer (solar project designer), for the development of epc projects in the photovoltaic sector... requisitos del puestorequired qualifications electrical......
Exciting opportunity for a cad engineer in the recycling industry! are you a skilled engineer with a passion for developing machines and promoting sustainability through recycling? if you have experience in cad drawing using solidworks and a deep understanding of conveyors, shredders, mills, and structural......
The application documents must be submitted in pdf format through this online application... who are we looking for ? the space and resilient communications and systems unit is looking for a satellite communications engineer... exceptional candidates may be considered even if they do not meet all the......
The application documents must be submitted in pdf format through this online application... who are we looking for ? the space and resilient communications and systems unit is looking for a satellite communications engineer... other requests may be studied to accommodate special needs... cat/wp-content/uploads/2022/02/cttc-professional-categories......
Estamos buscando un asistente de atención médica senior para coordinar la prestación de atención médica... asistente de atención médica senior - coordinador de turnos - car home / asistencia domiciliaria - turnos de día y de noche - centro de atención continua y domiciliaria - cornwall reino unido reach......
Estamos buscando un asistente de atención médica senior para coordinar la prestación de atención médica... asistente de atención médica senior - coordinador de turnos - asistencia domiciliaria / asistencia domiciliaria - turnos de día y noche - centro de atención continua y domiciliaria - cornwall reino......
Are you a devops / site reliability engineer seeking new interesting opportunity? so... keep reading it can be just what you're looking for! responsibilities: develop and maintain systems to support the company business... a lot of different internal trainings (tech and non-tech) + meetups+ special......
Are you a big data engineer looking for a new challenge? so... excellent spoken and written english... tech communities where you can share your knowledge with your colleagues... your profile: bachelor's or master's in information technology or equivalent education with it focus... com/es-es/meetup-de-innoit-consulting-en-barcelona/?_locale=es-es......
