Our client is looking for experienced software developers with a strong interest in or experience with secure coding practices and application security. The role sits within the Development Services department, which acts as the central knowledge hub for software development. The primary goal of the department is to continuously improve the quality of both the development process and its deliverables, with a key focus on software security.
About the Team
The team is responsible for setting and maintaining the standards and practices for secure software development. This includes managing the rulesets for static and dependency analysis tools, reviewing and advising on code security issues, evaluating exception requests, and exploring opportunities to improve the security posture of development activities across the organization.
Key Responsibilities
-
Develop and maintain secure coding standards and guidelines
-
Evaluate and support the use of secure software development tools and processes
-
Analyze code and provide security-focused remediation advice to development teams
-
Coach and train development teams on secure coding practices
-
Contribute to internal communities of practice around application security
-
Investigate and/or develop new tools to enhance code security
Technical Requirements
Security & Vulnerabilities:
Programming Experience (proficiency in at least one):
-
Java, JavaScript, Python, C#, Swift, or Go
Cloud & DevOps Tools:
Version Control:
Build Tools:
Code Quality & Security Tools:
-
SonarQube
-
Fortify
-
Nexus Lifecycle
Personal Competencies
-
Excellent communication and coaching skills
-
Ability to give and receive feedback constructively
-
Strong sense of ownership and accountability
-
Confident in delivering training and influencing development practices
-
Awareness of enterprise-scale software environments
-
Comfortable working in an international and intercultural context