Application Security Specialist (relocation to Montenegro)
São Paulo, State of São Paulo, Brazil
Applications have closed
Libertex Group
Libertex offers commission-free investments of real stocks as well as tradable CFDs with underlying assets.Libertex is an international financial services group specializing in online trading and investment. It was founded as a brokerage firm in 1997 and has since grown into a diverse group of companies, brokers, dealers, educational and IT-development centers which allows the group to operate globally, target 27 countries and serve clients from 120 countries.
Through its proprietary mobile and online trading platforms, Libertex offers trading in Forex, crypto, stocks, CFDs, futures, funds and indices.
Job Description
The Application Security Specialist provides subject matter expertise for securely designing, developing, maintaining, and retiring IT applications. He/she works closely with other stakeholders to ensure security is handled properly at every stage of the system development lifecycle.
The position will be a part of the IT Security Group responsible for security.
Requirements
- Ensuring security is handled as a built-in and permanent part of the system development lifecycle.
- Managing compliance requirements like PCI-DSS, GDPR.
- Training and mentoring developers in secure coding techniques and supporting toolsets to enable them to self-service
- Performing secure code reviews on different variety of programming languages
- Performing application vulnerability assessments, including regular scanning and penetration testing activities.
- Performing PoC and adoption processes for security toolsets like SAST, DAST, and SCA to improve the organization's application security toolchain capabilities.
- Helping WAF management processes to modify WAF policies to virtually patch applications where required.
Required Qualifications
- Strong understanding of application security risks enlisted by OWASP top 10, CWE 25, and similar standard awareness documents
- Knowledge of web and mobile application security. Experience with security tools, including static code analysis and vulnerability scanning.
- Functional understanding in tooling integrations to support Agile, CI/CD, and DevSecOps methodologies.
- Hands-on experience with Software Development. Professional software development and security code review experience with one or more of the following programming languages: Golang, Java, C++, PHP, JavaScript, and HTML.
- Knowledge of software architectural styles and patterns like SOA, server-client, MVC, microservice, modular monolith, and different security design approaches.
- Experience with one or more popular cloud service providers. Software development experience on the cloud-ready applications using supporting toolchains like containers, service-mesh, and container orchestration.
- Experience with agile software development practices and methodologies, preferably on scrum.
Benefits
- Work in a dynamic and fast-paced international company
- Beautiful emerging European destination (Montenegro, Podgorica)
- Low cost of living
- Generous relocation package
- Competitive tax free salary
- Comprehensive medical insurance for all family members
- Annual reimbursement of flight home for employee and family
- 21 working days of annual leave plus 14 days public holidays
- Fun and friendly professional environment
- Use of leading technologies and modern business practices such as Agile
- Excellent training and development opportunities
- Rapidly expanding global footprint
Tags: Agile Application security C CI/CD Cloud Code analysis Compliance Crypto DAST DevSecOps GDPR Golang Java JavaScript OWASP Pentesting PHP SAST Scrum
Perks/benefits: Career development Competitive pay Medical leave Relocation support Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs