Application Security Engineer (m/w/d)
at CompuGroup Medical
Koblenz, Rheinland-Pfalz, Germany -
| Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
|---|---|---|---|---|---|---|---|
| Immediate | 17 Aug, 2024 | Not Specified | 18 May, 2024 | N/A | Good communication skills | No | No |
Required Visa Status:
| Citizen | GC |
| US Citizen | Student Visa |
| H1B | CPT |
| OPT | H4 Spouse of H1B |
| GC Green Card |
Employment Type:
| Full Time | Part Time |
| Permanent | Independent - 1099 |
| Contract – W2 | C2H Independent |
| C2H W2 | Contract – Corp 2 Corp |
| Contract to Hire – Corp 2 Corp |
Description:
Join us in shaping the future of e-health as Application Security Engineer (m/f/d)
Are you passionate about cybersecurity and eager to dive deep into the world of secure software development? We are looking for a talented Appsec engineer to enhance our team at CGM. Your expertise will play a crucial role in shaping secure practices and safeguarding our software against threats.
Your contribution:
- Create and refine policies and set the standard across our secure development lifecycle.
- Design and conduct workshops to elevate our development teams’ proficiency in application security.
- Collaborate with teams to organize external pentests, analyse reports, recommend solutions, and centralise vulnerability management.
- Particularly with an emphasis on Java, ensuring our codebase is robust against threats.
- Act as a consultant for product and development teams, aiding in threat modelling, security reviews, and vulnerability management.
- Play a key role in supporting and refining our bug bounty initiatives.
- Innovate and automate tools and processes to proactively prevent security issues.
What you bring along:
- Exceptional ability to work alongside software development teams.
- Experience in identifying security issues, preferably in Java.
- Outstanding written and verbal communication skills, capable of demystifying complex topics.
- Knowledge of security libraries and tools (static analysis tools, penetration testing tools, etc.)
- Understanding of common security flaws (e.g. OWASP Top 10) and ways to remediate them.
- Hands-on development or scripting experience, preferably with a focus on DevSecOps.
- A solid grasp of network and web protocols (TCP/IP, UDP, HTTP, HTTPS).
- Experience with frameworks like OWASP ASVS, OWASP SAMM, OWASP DSOMM.
- Experience in building security champions programs and implementing secure software development lifecycles.
What you can expect from us:
- Reason and purpose: Become part of an important mission. We are shaping the future of e-health at the intersection of healthcare and digitization.
- Attractive locations with real communities: We focus on people and team spirit, hence we offer you attractive locations.
- Job security: We offer you a secure job in a stable market environment.
- Exchange at eye level: Everyone contributes to our success, regardless of their position. We are proud of our face-to-face mentality and the exchange and interaction at eye level - beyond all hierarchies.
- Creative freedom: You can make the difference in exciting projects. We offer you a wide range of development opportunities and long-term perspectives.
- All-round package: Employee benefits, a sophisticated feel-good management system, and other site-specific offers.
Convinced? Apply now online with all necessary documents (inlc. salary requirements and earliest possible starting date).
We create the future of e-health.
Become part of an important mission
Responsibilities:
Please refer the Job description for details
REQUIREMENT SUMMARY
Min:N/AMax:5.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Software Engineering
Graduate
Proficient
1
Koblenz, Germany
