6 days ago Be among the first 25 applicants
Direct message the job poster from E-Resourcing Belgium BV
Resource Delivery Co-ordinator - Connecting Top Talent with Leading Companies | Passionate About Building Careers
Key Responsibilities
1. Champion Security Across Development Teams: Lead and coach development teams on security best practices.
2. Provide regular status updates, identify next steps, and assign responsibilities.
3. Build Scalable “Shift Left” Security Approaches: Implement and automate SAST/DAST within CI/CD pipelines.
4. Enhance code security through reduced MTTR and improved adoption of security testing.
5. Establish threat modeling as a standard practice.
6. Foster a Security-First Culture: Act as the lead security champion to mentor future security champions within development teams.
7. Develop and propose actions to build a robust security champions program.
8. Collaborate and Share Expertise: Work closely with security champions and application security experts to share knowledge, provide advice, and document best practices.
9. Serve as a point of escalation for development teams on security-related matters.
10. Use SAMM (Software Assurance Maturity Model) to measure and improve security in development.
11. Perform threat modeling for projects and ensure mitigation requirements are implemented.
Technical Profile & Background
1. Strong expertise in Application Security and Pen Testing.
2. In-depth knowledge of the Secure Software Development Lifecycle (SSDLC), gained through experience as a developer or architect.
Required Skills
1. Proficient in at least one programming language.
2. Ability to identify and recommend fixes for software security vulnerabilities.
3. Skilled at performing threat modeling with development teams.
4. Exceptional communication skills to explain technical content to non-technical audiences.
5. Familiarity with application security frameworks and standards (SAMM, BSIMM, NIST SSDF).
6. Knowledge of Kubernetes and container security.
7. Cloud security expertise (AWS, Azure, GCP).
Preferred Qualifications
1. CSSLP, OSCP, or other relevant security certifications.
Experience Required
1. Demonstrated experience in Application Security and/or Pen Testing.
2. Proven ability to work effectively in large, complex environments.
Seniority level
Mid-Senior level
Employment type
Contract
Job function
Information Technology
Industries
Motor Vehicle Manufacturing
#J-18808-Ljbffr