WE WOULD LIKE IT IF YOU HAVE EXPERIENCE WITH:

• IoT devices
• Aqua Software Supply Chain Security
• WhiteSource/Mend
• SonarQube
• Coverity
• BitBucket
• Jenkins

MORE ABOUT THE ROLE

This is an exciting job opportunity for you to light the way as a Application Security Specialist in Eindhoven with Signify.
Connected lighting products are not only devices, but systems and services, hence data. As such, they are exposed to threats coming from cyber space with greater impact.
One of the most critical prerequisites for our success is ensuring the security of our offerings and related information end-to-end. The speed of innovation has increased drastically, and the scope of product security has been expanded: from electronics components (hardware) only, to software, communications and information technology, engineering systems and data analytics.
If you are an experienced and motivated Application Security Specialist looking for an opportunity to work in the forefront of the lighting industry, become part of a team of seasoned security experts and want to make a strong impact on the transformation of a global leading company, we want to talk to you about joining our Product Security Center of Excellence!

YOUR MAIN RESPONSIBILITIES

As Application Security & Tooling Specialist, you are responsible for defining, implementing and managing the security toolset with which we protect our Software Applications, improving the organization, policies, procedures, technology and tools which assure the security of the ecosystem of our products: from innovation till the end of life, providing guidance and support to the Development teams as well as the Cloud Center of Excellence that is responsible for the operations of the connected systems.

Your primary focus is to

• Define and deploy the Application Security Strategy for security improvements to be in pair with the industry and its benchmarks
• Drive the implementation of the strategy to secure our applications for our connected lighting systems.
• Provide support/guidance in resolution of problems, implementation of changes, ensure proper security of applications in Signify products, systems and services.
• Provide technical security guidance to the Development and operation teams.
• Coordinate and perform security & vulnerability assessments, code reviews, pen tests and verifications, and drives remediation.
• Identify, assess, and manage risks to meet the security needs of the organization.
• Identify opportunities for Security Awareness training and improvements within your area of responsibility and propose a set of actions to address lagging user Security behaviors.
• Support security projects/programs to implement selected Security solutions, both as process/performance improvements and new capabilities.
• Drive enhancements of Business security tools like SCA, SAST and credential management, support the integration of the tools in SDLC/DevSecOps and assure the correct use.
• Execute and support the development of the department strategy in the Product Security competency area.
• Act as a trend watcher, leveraging external ideas, know-how, business partners, and suppliers, with the objective to enhance Business’s Application security.