Application Security Engineer

At Tetra Pak we commit to making food safe and available, everywhere; and we protect what's good – protecting food, protecting people, and protecting the planet. By doing so we touch millions of people's lives every day.

And we need people like you to make it happen.

We empower you to reach your potential with opportunities to  make an impact to be proud of – for food, people and the planet.

Job Summary

As an Application Security Engineer, you will be a senior member in the global Information Security team, and your main work will be to improve security posture of the entire inhouse-developed software portfolio across Tetra Pak. You will do so by supporting various software development teams in a global capacity, to ensure that Tetra Pak applications are safe and secure.

Here, you have the freedom to use your expertise to improve something vital to all of our lives – food. With structured career development, a role with us can take your career to the next level. 
Join us and make an impact to be proud of – for food, people and the planet. 

What you will do

• Establish processes and guidelines for Secure Software Development Lifecycle together with AppSec Lead and Security Architects.
• Be a Subject Matter Expert and body of knowledge in Application Security within the software development area.
• Coach and support a broad network of Security Champions, and work together with relevant stakeholders to establish Secure Software Development Lifecycle mindset and ways of working in their respective teams.
• Support development teams in DevSecOps practices.
• Provide support in Threat Modeling activities.
• Ensure that the Application Security capabilities including training and tooling are relevant and up-to-date.
• Drive the success and increasing maturity of Tetra Pak's Application Security Program.

We believe you have

You have a bachelor’s degree within IT, or a minimum of 7 years work experience in software development, with at least 3 years in utilizing or championing Secure Software Development methodology . You have extensive knowledge and strong working experience in most of the following security related technologies and practices: 

• OWASP Top 10 and Application Security in general.

• DevSecOps with exposure to commonly used CI/CD platforms.

• Threat Modelling & Risk Assessment.

• SAST ,SCA and DAST tools.

• Exposure to one or few commonly used programming languages/platforms( .NET, C#,  Java , JavaScript/TypeScript).

• Cloud & modern tech-stack security (PaaS, Containerization & orchestration, microservices, etc.) 

• Vulnerability management

• Azure, Windows, and Linux security practices

• Hacking tools and offensive security techniques 

• As a person you are self-motivated and committed to plan, drive, and deliver according to set goals. You possess good collaboration skills and can work together with different stakeholders to find the best solutions. You are an analytical and structured person that are used to work in teams and enjoy supporting your colleagues.

We Offer You

• A variety of exciting challenges with ample opportunities for development and training in a truly global landscape
• A culture that pioneers a spirit of innovation where our industry experts drive visible results
• An equal opportunity employment experience that values diversity and inclusion
• Market competitive compensation and benefits with flexible working arrangements

Apply Now

If you are inspired to be part of our promise to protect what’s good; for food, people, and the planet, apply through our careers page at https://jobs.tetrapak.com/. 

This job posting expires on 30/11/2024.

If you have any questions about your application, please contact Dipali Moray.

Diversity, equity, and inclusion is an everyday part of how we work. We give people a place to belong and support to thrive, an environment where everyone can be comfortable being themselves and has equal opportunities to grow and succeed. We embrace difference, celebrate people for who they are, and for the diversity they bring that helps us better understand and connect with our customers and communities worldwide.