Key skills
AzureJavaJavaScriptJenkinsPHPPythonTypeScriptC#CGoAzure DevOpsGitLabCI/CDRemote WorkSonarQubeOWASP
About this role
Role Overview
- Analyze results from security tools
- Perform and manage application security scans within DevSecOps pipelines
- Analyze reports generated by SAST tools
- Identify, assess, and prioritize detected vulnerabilities
- Provide security GO / NO-GO recommendations for promoting applications to the testing/staging environment
- Educate and raise awareness among developers about secure development best practices
- Produce analysis summaries and tracking reports
Requirements
- Master’s degree (Bac +5) in Cybersecurity, Software Development, or Information Systems
- 3 to 5 years of experience in AppSec, code auditing, or DevSecOps
- Understanding of application vulnerabilities: OWASP Top 10, injections, XSS, SSRF, insecure deserialization, exposed secrets, and dependency vulnerabilities
- Proficiency or familiarity with tools such as OpenText Fortify and Debricked
- Knowledge of CI/CD and DevSecOps tools: Jenkins, GitLab, Azure DevOps, SonarQube
- Ability to read and understand code in Java, JavaScript/TypeScript, Python, C#, PHP, or other application languages
Tech Stack
- Azure
- Java
- JavaScript
- Jenkins
- PHP
- Python
- TypeScript
Benefits
- Up to 3 days of remote work per week
- Meal vouchers (face value €10, employer covers 60%)
- Onboarding events and regular social/team-building activities (depending on site/department)
- All vacation days available from your first day
- Employee referral program up to €2,750
- Access to social and cultural activities
- Sustainable mobility support (bike, carpooling)