Senior Application Security Engineer
Romania - Remote
SAP Fioneer
Innovative, reliable and scalable software and platform solutions that empower banks, insurers and challengers to grow and transform at speed.Do you want to be part of a new, fast-growing global company delivering the next generation of software solutions for the financial services industry?
As a spin-off from SAP (a market leader in enterprise application software), SAP Fioneer builds on a heritage of outstanding technology and a deep understanding of corporate and consumer demands. This gives us a head start to bring financial services to the next level with innovative software solutions and platforms. We help financial services businesses achieve speed, scalability, and cost efficiency through digital business innovation, cloud technology, and solutions that cover banking and insurance processes end-to-end.
SAP Fioneer is a global company with subsidiaries in Germany, Austria, Switzerland, the UK, UAE, Canada, the US, Brazil, Mexico, Japan, Australia, India, and Singapore. Our rapid growth, great team and lean organization make SAP Fioneer a great place to accelerate your career!
About the role
After an extensive onboarding period, you will work with a focus on cybersecurity topics of software products and services build with e.g. SpringBoot, Kotlin, React, SAP Fiori, and deepen your skills and experiences. You will also have the chance to gain further experiences in functional and technical security topics within our solution portfolio in an agile environment.
The role is located in the central Application Security Team of SAP Fioneer, which enables and supports application security excellence in product development teams.
- You will work in different phases of our Secure Development Lifecycle based on your skills and ambitions
- You are responsible for enabling and supporting software engineering teams to apply state-of-the-art software security techniques
Requirements
Requirements:
- Bachelor or Master’s degree in Computer Science, IT Security or similar degree
- 3-5 years of work experience in the field
- Familiar with the OWASP Top 10 Vulnerabilities and the knowledge how to prevent them
- Familiar with CVSS Rankings and Secure Development Lifecycle
- Experience in Manual Secure Code Reviews for Java and JavaScript
- Experience in Automated Security Testing with static/dynamic security testing tools (SAST/DAST) (e.g., with the tools Snyk and Burp)
- Know How in Secure Software Architecture
- Experience in Penetration Testing is beneficial
- Initial professional experience of DevSecOps (e.g., Pipelines with GitHub Actions or Jenkins) is beneficial
- Excellent communication and people-focused skills
- Eager to learn and improve your cloud application security skills
- Fluent in English and open to other cultures and ideas
Benefits
Our employee benefits package includes a gym membership, generous 27 days of paid time off, a flexible work and time environment, access to internal and external training opportunities, thoughtful anniversary and birthday gifts, the option to select equipment according to personal preference, and a dedicated work phone. We prioritize your well-being and professional development
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Application security Banking Cloud Computer Science CVSS DAST DevSecOps GitHub Java JavaScript Kotlin OWASP Pentesting SAP SAST Vulnerabilities
Perks/benefits: Career development Fitness / gym Flex vacation Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs