Application Security Specialist (f/m/d)

Workload: 100%

As an Application Security Specialist, you will support the implementation of Axpo’s security policies and guidelines within your vertical (i.e. an organization unit within Trading IT responsible for change and operation of a subset of the energy trading related applications). Acting as the single point of contact (SPOC) towards Head Security of Axpo Trading IT for security measures of the vertical, you will collaborate closely with application owners, ensuring secure solution designs, adherence to security controls, and effective disaster recovery planning.

What you will do:

• Manage information security within the vertical, ensuring compliance with Axpo’s policies.
• Adapt and implement application security strategies tailored to the vertical’s needs.
• Identify and assess security risks, prioritizing remediation efforts.
• Collaborate with software development teams to integrate security practices into the software development life cycle.
• Maintain and execute incident response plans for application security incidents.
• Conduct security assessments, code reviews, and oversee security testing activities.
• Ensure adherence to security controls like access and vulnerability management.
• Support solution design security and evaluate third-party applications.
• Oversee IT disaster recovery readiness and implementation of guidelines.
• Provide training and awareness programs to enhance security knowledge within the vertical.
• Represent the vertical in Axpo’s central information security forums and coordinate reporting.

What you bring & who you are:

• Bachelor's degree in Computer Science, Information Security, or a related field (Master’s preferred).
• Industry-recognized certifications (e.g., CISSP, CEH, Azure) are a plus.
• 4+ years of experience in application security management or a similar role.
• Strong knowledge of security practices, threat modeling, and security assessment methodologies.
• Familiarity with programming languages (e.g., Java, Python, .NET) and secure coding practices.
• Proficiency in tools like WAFs, SAST/DAST, and vulnerability scanners.
• Exceptional problem-solving, communication, and organizational skills.
• Fluent in English; German is an advantage.

About the team:

At Axpo, you’ll collaborate with a team dedicated to innovation and secure operation. In our vertical we deliver new functionality to our business users in a high pace while giving security aspects a real focus. This dynamic and challenging role offers you the opportunity to make a tangible impact on security for Axpo’s Trading IT landscape.