Security Engineer at Tieto

Porto, , Portugal -

Full Time

Start Date

Immediate

Expiry Date

22 Sep, 26

Salary

0.0

Posted On

24 Jun, 26

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Application Security, DevSecOps, S-SDLC, SAST, DAST, SCA, Kubernetes, Docker, Python, Bash, Java, Go, OWASP, ISO 27001, Vulnerability Management, WAF

Industry

technology;Information and Internet

Description

Job Description We are looking for a DevSecOps / Application Security Engineer to join a forward-thinking technology team supporting large-scale digital transformation and cloud modernization initiatives. If you are passionate about secure software development, cloud-native security, and embedding security into every stage of the development lifecycle, this role offers an exciting opportunity to work in a collaborative and innovation-driven environment. Main Responsibilities Define, standardize, and evolve Secure Software Development Life Cycle (S-SDLC) practices across multiple engineering teams Integrate and manage application security testing tools (SAST, DAST, SCA) within CI/CD pipelines Lead vulnerability management initiatives across cloud environments and Kubernetes clusters Maintain, automate, and improve infrastructure security controls, including WAF configurations and network security policies Guide development and DevOps teams on secure coding practices and DevSecOps principles Ensure alignment with industry standards and frameworks such as OWASP, CIS Benchmarks, and DORA Support continuous improvement of security posture across applications and infrastructure Required Skills Bachelor’s degree in Computer Science, Cybersecurity, or equivalent practical experience Solid professional experience as a Security Engineer with strong focus on Application Security and DevSecOps practices Hands-on experience with containerization technologies and orchestration platforms (e.g., Docker, Kubernetes) Strong programming and scripting skills (Python, Bash, Java, Go, or similar) Good understanding of security standards and frameworks, including OWASP Top 10 and ISO 27001 Strong communication skills and ability to work effectively with both technical and non-technical stakeholders Proactive, responsible, and collaborative mindset Nice to Have Certifications such as CKA (Certified Kubernetes Administrator) or CKS (Certified Kubernetes Security Specialist) Strong analytical skills for threat detection and security risk assessment Excellent communication abilities to translate technical security concepts into business impact Experience aligning security requirements with cloud modernization and business objectives Additional Information At Tieto, we believe in the power of diversity, equity, and inclusion. We encourage applicants of all backgrounds, genders (m/f/d), and walks of life to join our team, as we believe that this fosters an inspiring workplace and fuels innovation. Our commitment to openness, trust, and diversity is at the heart of our mission to create digital futures that benefit businesses, societies, and humanity. Diversity, equity and inclusion | Sustainability | Tieto Remote Type: Hybrid Job Area: Technical and Functional Expertise Business Unit: Group Functions

Responsibilities

Define and evolve Secure Software Development Life Cycle practices while integrating security testing tools into CI/CD pipelines. Lead vulnerability management and maintain infrastructure security controls across cloud and Kubernetes environments.