Application Security Engineer (m/w/d)

Join us in shaping the future of e-health as Application Security Engineer (m/f/d)

Are you passionate about cybersecurity and eager to dive deep into the world of secure software development? We are looking for a talented Appsec engineer to enhance our team at CGM. Your expertise will play a crucial role in shaping secure practices and safeguarding our software against threats.

Your contribution: 

• Create and refine policies and set the standard across our secure development lifecycle.

• Design and conduct workshops to elevate our development teams' proficiency in application security.

• Collaborate with teams to organize external pentests, analyse reports, recommend solutions, and centralise vulnerability management.

• Particularly with an emphasis on Java, ensuring our codebase is robust against threats.

• Act as a consultant for product and development teams, aiding in threat modelling, security reviews, and vulnerability management.

• Play a key role in supporting and refining our bug bounty initiatives.

• Innovate and automate tools and processes to proactively prevent security issues.

What you bring along:

• Exceptional ability to work alongside software development teams.

• Experience in identifying security issues, preferably in Java.

• Outstanding written and verbal communication skills, capable of demystifying complex topics.

• Knowledge of security libraries and tools (static analysis tools, penetration testing tools, etc.)

• Understanding of common security flaws (e.g. OWASP Top 10) and ways to remediate them.

• Hands-on development or scripting experience, preferably with a focus on DevSecOps.

• A solid grasp of network and web protocols (TCP/IP, UDP, HTTP, HTTPS).

• Experience with frameworks like OWASP ASVS, OWASP SAMM, OWASP DSOMM.

• Experience in building security champions programs and implementing secure software development lifecycles.

What you can expect from us:

• Reason and purpose: Become part of an important mission. We are shaping the future of e-health at the intersection of healthcare and digitization.
• Attractive locations with real communities: We focus on people and team spirit, hence we offer you attractive locations.
• Job security: We offer you a secure job in a stable market environment.
• Exchange at eye level: Everyone contributes to our success, regardless of their position. We are proud of our face-to-face mentality and the exchange and interaction at eye level - beyond all hierarchies.
• Creative freedom: You can make the difference in exciting projects. We offer you a wide range of development opportunities and long-term perspectives.
• All-round package: Employee benefits, a sophisticated feel-good management system, and other site-specific offers.

Convinced? Apply now online with all necessary documents (inlc. salary requirements and earliest possible starting date).

We create the future of e-health.

Become part of an important mission.