Application Security Consultant

Do you enjoy Threat Modeling Enterprise applications at scale? Do you like assessing complex architectures for security design flaws? Do you enjoy auditing cloud environments? Do you love working with development and testing teams to establish security controls and procedures in the SDLC? If yes, apply to join the TwelveSec team!

TwelveSec secures clients’ ΙΤ environments, networks and applications, throughout the globe. The Application Security Architect will ensure that core Secure SDLC development practices and principles will be followed, by being an integral part of the client’s development teams.

Tasks / Duties

Your tasks will, from day to day, include:

• Ensure the implementation of appropriate security procedures during development
• Ensure security best security practices are followed
• Perform security assessments and evaluation of security controls
• Support teams with “shift security left” by implementing and evaluating security tools (SCA, SAST, DAST, IAST)
• Support teams with diagnosing and resolving build security problems as well as basic security mitigation
• Support teams with the evaluation of new policies (including those for managing licenses, operations, and pipeline failures)
• Support teams with managing roles and responsibilities
• Provide security guidance throughout the whole DevOps lifecycle, taking into account all components needed for each project
• Work with teams to keep security tools updated, upgraded, and properly configured
• Define DevSecOps standards and processes for security automation tools

Requirements

Must-have

• At least 2 years working in the security or development field with involvement in the whole system lifecycle (both infrastructure and development)
• Good knowledge of Information Security Principles
• Secure development knowledge by following best practices
• Experience with S-SDLC and automated testing solutions (SCA, SAST, DAST, IAST)
• Base knowledge of version controls systems and CI/CD environments (GitHub, GitLab, Azure DevOps)
• Client-facing and consulting attitude
• Good communication and interpersonal skills
• Excellent use of spoken and written English language

Nice-to-have-(optional)

• Security Source Code Review Experience
• Technical Writing Skills
• Security related certifications (CISA, CISM, CISSP etc)

Benefits

Here are some of the benefits of joining the TwelveSec team:

• Work in a friendly environment, with good team chemistry
• Work from home and have flexible hours

• Earn an annual gross salary of 43-58k euros

• Gain experience with new types of projects

• Improve your CV by getting related trainings with our support