Key skills
CI/CDRemote WorkOWASP
About this role
Role Overview
- Support the development and rollout of the application security roadmap.
- Work closely with development and operations teams to support and enforce security best practices.
- Provide security guidance early in the software development lifecycle to identify threats and mitigate risks.
- Collaborate with Technology Platform teams to integrate security tooling and processes into CI/CD pipelines.
- Advise developers on secure coding practices and assist in remediating identified vulnerabilities.
- Deliver application security training and awareness programs for developers.
Requirements
- Proven track record in application security or software development.
- Strong understanding of the secure software development lifecycle (SSDLC).
- Practical experience with application security tools such as SCA, SAST, or DAST.
- Familiarity with common application security risks (e.g., OWASP Top 10) and mitigation strategies.
- Knowledge of application security activities such as secure coding, threat modeling, and vulnerability management.
- Experience with scripting languages.
- Fluency in German and English is required.
Benefits
- 30 days of paid vacation per year, plus Christmas Eve and New Year's Eve off.
- Option to exchange part of your salary for additional paid vacation or to take a sabbatical.
- Flexible hybrid working model combining office presence and remote work.
- Workation for up to 20 days per year within Europe.
- Company pension plan and a comprehensive insurance package.