Summary

Your mission:

We are looking for a Senior Security Engineer to enhance our security posture by integrating advanced security tools, implementing Zero-Trust principles, and proactively identifying and mitigating vulnerabilities. This role will play a critical part in ensuring compliance with industry security standards while fostering a culture of security best practices across development and operations.

In this role, you will:

1. Integrate SCA, SAST, and DAST tools into CI/CD pipelines to ensure secure software development.
2. Implement Zero-Trust security principles across infrastructure, ensuring robust access controls and identity management.
3. Design and deploy secure and scalable secrets management solutions to protect sensitive data.
4. Develop comprehensive threat models for all services, identifying and mitigating potential risks.
5. Conduct frequent penetration testing of internal applications and services to identify vulnerabilities proactively.
6. Establish unified vulnerability management pipelines, integrating and standardizing security data from multiple sources.
7. Ensure compliance with industry security standards, including SOC 2, ISO 27001, and NIST frameworks.
8. Collaborate with development and operations teams to advocate for security best practices and secure coding principles.
9. Automate security-related tasks, leveraging scripting and security orchestration techniques.
10. Research and implement emerging security technologies, particularly in blockchain and cryptographic security.

What you need to be successful:

1. Hands-on expertise deploying and managing SAST, DAST, and SCA tooling to seamlessly integrate security into our CI/CD pipelines.
2. A deep understanding of secure coding practices, threat modeling, and applied cryptography.
3. Proven, practical experience with AWS security best practices and implementing cloud-native security solutions.
4. A strong, demonstrable background in leading vulnerability assessments and conducting penetration testing.
5. Familiarity with robust key management solutions and operational experience with Privileged Access Management (PAM) systems.
6. Strong scripting and automation skills (e.g., Python, Bash, PowerShell) to automate security tasks and improve efficiency.
7. Relevant security certifications like OSCP, OSWE, or AWS Security are a great asset, but your practical skills are what truly count.
8. Excellent communication and collaboration skills—the ability to articulate complex security concepts to technical and non-technical teams alike.
9. Experience working with HSMs (Hardware Security Modules) or other secure computational technologies, as well as with cryptographic technologies or crypto-related projects, is an advantage.

Salary: 65,000 - 75,000 € per year

Skills

• AWS
• Community Moderator
• Cryptography
• Development
• Python
• Software Engineering
• Team Collaboration