Security Consultant
at Deploja AB
Göteborg, Västra Götalands län, Sweden -
| Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
|---|---|---|---|---|---|---|---|
| Immediate | 16 Dec, 2024 | Not Specified | 21 Sep, 2024 | N/A | Authorization,Security,It,Application Security,Security Testing,Logging,Risk Assessment,Coding Standards,Devops,Application Services | No | No |
Required Visa Status:
| Citizen | GC |
| US Citizen | Student Visa |
| H1B | CPT |
| OPT | H4 Spouse of H1B |
| GC Green Card |
Employment Type:
| Full Time | Part Time |
| Permanent | Independent - 1099 |
| Contract – W2 | C2H Independent |
| C2H W2 | Contract – Corp 2 Corp |
| Contract to Hire – Corp 2 Corp |
Description:
ESSENTIAL REQUIREMENTS:
- You know how to build secure software and how to implement security in DevOps. This includes knowledge of the stages of an SSDLC and associated activities such as threat modelling, risk assessment, secure design, security testing, and secure coding standards.
- You know how to make use of centralized enterprise application services, e.g. authentication, authorization, secret management, logging, etc. in a way that represents secure design/architecture and provide support to application teams on the same.
- You know how to read and interpret vulnerability reports, triage findings, and you have a solid understanding of what constitutes an application vulnerability and how to mitigate it.
- You know how to approach stakeholders, build trust and help others understand why application security is important and why they need to change. You are a catalyst, a helping hand, supporting teams and individuals through change.
Responsibilities:
ROLE:
The Cyber risk remediation team is designed with a strong emphasize on application security with a product portfolio that include:
- SSDLC Transformation Service: Supporting individual application teams on how to build secure applications and integrate a Cyber Defense mindset in behavior and deliveries.
- Vulnerability Remediation Service: Support stakeholders in meeting vulnerability remediation goals. Vulnerability remediation responsibility lies with the asset owners, but they step in as a catalyst to make it happen.
- Cyber Risk Review: Perform an assessment to understand maturity related to Cyber defense. Results are documented, and recommendations are tracked and supported in collaboration with stakeholders.
- Penetration Test Service: Coordinate penetration tests, conducted by external security specialists. Review and distribute detailed reports of findings, ensuring prioritized vulnerabilities are addressed and resolved efficiently.
TYPICAL EVERYDAY TASKS:
- Attend team meetings
- Attend stakeholder meetings
- Actively support remediation of vulnerabilities with stakeholders
- Participate in communication/awareness events
- Collaborate with Product Management function and stakeholders on potential new products and/or development of existing products
- Support backlog refinements and planning
- Build reports
- Analyze reports
- Code reviews
REQUIREMENT SUMMARY
Min:N/AMax:5.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Software Engineering
Graduate
Proficient
1
Göteborg, Sweden
