Application Security Engineer
Oslo, Oslo, Norway
Aize AS
Bring your experts closer to engineering and operational data in one placeWhat you tell your friends you do...
"… I make sure people don’t click the “URGENT” messages in their inbox from their colleague@hacker.com"
What you will really be doing...
🎓Providing subject matter expertise on topics such as secure design, security controls, encryption, programming, and web security standards
🔨Establishing and following up processes for secure development
🔒Ensuring compliance with security standards
🛠️Training internal teams on security aspects
🖥️Working closely with the team to identify and respond to security incidents
🛡️Designing, implementing, and operating IT security tools
💪Taking ownership of parts of the ISO 27001 process
How you will be doing this…
- Working together with a team of security professionals and developers to ensure the security of the product and our customers data.
- Owning the CICD security pipeline and vulnerability management of the product.
- Responsible for defining security configurations for our cloud infrastructure.
Tech
- Containers and Kubernetes
- Cloud based infrastructure
- Infrastructure as code tools - Terraform, Cloud formation and / or Azure ARM, Bicep.
- APIs (Rest and GraphQL)
- Webapp firewalls
- Application authentication and access control –JWT, OAuth, SCIM
- Secure development (SAST, DAST, IAST, SCA)
- Typescript, Angular, Java, Python, C#, Go
- Gitlab CI/CD, Test automation
Skills & Requirements
- Minimum 3 years of experience in cybersecurity
- Programming skills in at least one non-scripting language
- The ability to think like an attacker
- Experience implementing Security Champion programs
- Eligible for NATO security clearance
- Experience with integrating security tooling to CI/CD
- Experience with threat modeling
- Experience with cloud security
- Experience with a SaaS cloud solution product
- Experience with DevSecOps and/or S-SDLC and of OWASP Top 10 and ASVS
- Experience with backend and frontend systems
- Capable of building successful relationships across different teams
We offer:
- Money.
- A beefy enough MacBook Pro or equivalent laptop running Windows.
- Tech talks, lunch and learns…
- To help you keep your money, we also chip in on your pension, pay for your travels and keep you safe with insurance.
- Speaking of safe, we have our very own private health clinic.
- Room for you to do things your way.
- Lots of things you can learn through our skilled sparring partners.
- 25 days of paid leave, so long as you promise to come back! Maybe you want to use a couple of days in one of our cabins; Gaustablikk, Beitostølen, Hafjell, Tjøme ++?
- We like to inspire your passion by giving you the opportunity to visit events.
- Relocation support.
- And yes, we also have the industry standard perks such as a free phone plan, broadband at home, hardware, gym, beer, ping pong tables, great lunch, team activities, and awesome parties.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Application security Automation Azure C CI/CD Clearance Cloud Compliance DAST DevSecOps Encryption Firewalls IAST ISO 27001 Java Kubernetes NATO OWASP Python SaaS SAST Scripting SDLC Security Clearance Terraform TypeScript Vulnerability management Windows
Perks/benefits: Gear Health care Relocation support Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs