Mid-Level Application Security Engineer

Mission Overview:

This is a unique consultancy opportunity offered through Keystone Solutions. You will serve as a Medior Developer / Application Security Engineer on a consultancy mission at a client site in the Brussels area. In a fast-evolving environment of distributed application development (Java/mobile) and advanced security practices, the client is strengthening its Application Security & Vulnerability Management team. As a Keystone Solutions consultant, you will engage closely with the client, contributing your expertise to enhance secure coding practices, manage advanced security tool setups, and drive improvements in the software development lifecycle. This role is embedded in our dynamic consultancy model that prioritizes continuous learning, diverse challenges, and accelerated career growth.

Key Responsibilities:

• Major Tasks:
  • Manage requests, through Jira tickets, from squads for setting up toolings related to the application security tools managed by the team.
  • Conduct code reviews on applications developed within IT using security toolings (SAST).
  • Proactively support and assist IT development squads in adopting secure development practices and SecDevOps methodologies, including preparing training sessions on security-related topics and coaching teams on various security tools.
  • Manage the technical infrastructure that supports automatic code reviews and open source library evaluations, including maintaining applied policies (security, compliance, etc.), reporting on evaluation execution, keeping development guidelines up-to-date, and reviewing defects and vulnerabilities.
  • Take a leadership role as an application security expert in implementing projects and changes within the team.
• Minor Tasks:
  • Manage security issues by promptly detecting problems, informing the responsible application owner, and following up with detailed reporting.
  • Support IT developers in identifying and resolving security risks and incidents.
  • Provide input for new security measures, such as developing and refining detection mechanisms.
  • Occasionally write scripts for internal tooling to bolster secure coding practices, with coding work remaining a secondary responsibility.

Language Requirements:

• Desirable: Basic knowledge of Dutch.
• Desirable: Basic knowledge of French.
• Mandatory: Excellent command of English.

Education:

Master in IT or Engineering, or equivalent experience.

Telework:

This consultancy position follows a model with approximately 50% on-site presence at the client location and 50% remote work.

Required Experience / Knowledge:

• Experience in the development of applications and up-to-date knowledge of current trends in software development.
• Strong interest in application security with an ambition to become a seasoned expert within the next 3-5 years.
• A solid understanding of the software development lifecycle in an Agile environment and familiarity with DevOps principles.
• Knowledge of security checks and the integration of security measures at various stages of application development.

Technical Experience:

• Current awareness of recent developments in software development, including programming languages, technologies, and standard tools and platforms (e.g., Jenkins, GitLab, Maven, Docker).
• Recognition of application security as your primary domain of expertise.
• Interest in penetration testing with initial hands-on experience in this area.
• Understanding of network security fundamentals.
• Insight into the challenges associated with mobile application development and testing.

Business Experience:

• While not required, experience in highly regulated environments where information security is critical (such as banking, pharmaceuticals, aviation, nuclear, or military sectors) is considered a plus.

Soft Skills:

• Team player with a strong willingness to share information and collaborate effectively.
• Self-starter with a proactive attitude and rapid learning abilities.
• Capable of interacting with diverse stakeholder profiles (developers, architects, testers, business experts, management) and adapting communication accordingly.
• Commitment to staying current with the latest industry trends.
• Excellent communication, analytical, and synthesis skills.
• High level of autonomy, commitment, and perseverance.
• Ability to thrive in a dynamic, multicultural environment.
• Flexible, detail-oriented, and control-minded.
• Assertiveness and a strong result-oriented mindset.

Keystone Solutions Consultancy Advantages:

• Consultancy Nature of Work: Engage in a role where you work on diverse client projects, delivering specialized security expertise on-site as a Keystone Solutions consultant.
• Dynamic Projects: Benefit from exposure to a wide range of challenges across different client environments.
• Turbo-Charged Learning and Development: Take advantage of extensive learning opportunities and robust professional development support.
• Ambition Skyrocketing within a Consultancy Framework: Experience accelerated career growth fostered by varied project engagements and a culture deeply rooted in Keystone Solutions’ core values.

Apply Now:

If you are ready to tackle technical and strategic challenges in a dynamic consultancy environment, apply today at Keystone Solutions Career Portal.