Job Description

Job Description
We are looking for a profile specialized in application security to integrate secure practices throughout software development and collaborate with engineering teams.
Responsibilities:
Collaborate with engineering teams to ensure consistent application of secure development practices.
Review security controls for new features, services, and architectural changes.
Run threat modeling sessions for example STRIDE for new and existing systems.
Identify threats, attack paths, misconfigurations, and insecure design patterns.
Requirements:
Knowledge of software development principles.
Knowledge of common vulnerability classes OWASP Top 10, CWE.
Experience working with modern SDLC methodologies and agile development workflows.
Hands-on experience with SAST, DAST, SCA application security tools.
Experience integrating security tools into CI/CD pipelines.
Experience in web application security testing.
Ability to pragmatically assess risk and prioritize remediation.
Knowledge of cloud-native architectures, APIs and microservices.
Experience working collaboratively with product and engineering teams.

Salary to receive
To agree