With more than 20 years of proven experience, QUALCO is a leading Fintech solutions provider, offering a wide range of analytics-driven, highly scalable enterprise software solutions in over 35 countries worldwide. Our end-to-end technology solutions cover a wide range of needs for Banking, Financial Services, Utilities, Insurance, Retail organisations, and beyond.
We are looking for a Security Testing Specialist to prepare and execute analysis of the applications from a security point of view, including an analysis of the available documentation, source code, of the architecture, and penetration testing.
Responsibilities:
* Analysis of documentation, code, and other information, preparation and execution of penetration testing, and analysis and assessment of the results;
* Participation in meetings as required, at the start of, end of, and during the security testing process;
* Organizing technical meetings to elicit information and escalating to the responsible team leader and/or the statutory staff responsible if necessary;
* Assessing findings and alerting the responsible team leader and/or the statutory staff responsible;
* Preparing reports on the results of the technical security analysis and assessment, and communicating them to statutory staff responsible according to the processes and procedures foreseen by the Contracting Authority;
* Reporting to the specifically assigned Team Leader and the statutory staff responsible on possible technical challenges, actual and future, for the work of the team, and contributing to proposals to address them;
* Providing relevant technical security input, also based on specific experience in the environment of the Contracting Authority, to activities, such as technical evolution and maintenance in operations of platform used for the security checks, DevSecOps;
* Ensuring that all activities and duties comply fully with regulatory requirements, including the Group Anti-Bribery and Corruption Policy.
Minimum Requirements:
* Bachelor's degree in a related field;
* At least 3 years of professional experience in a similar position;
* Experience in implementation of security measures and/or security auditing;
* Experience as developer and/or in roles with technical security responsibilities;
* Experience in activities and environments requiring to work with sensitive information, with different information labels and handling rules;
* Experience in analysis and in redaction of documents for, and contacts with, technical and non-technical people;
* Good knowledge of security and vulnerability management practices, preferably including relevant framework, best practices and standards (e.g. NIST SP800, ISO 27001, OWASP, hardening guidelines);
* Good general ICT knowledge, e.g. networking, operating system, firewalls, web applications servers, programming and code quality tools, virtualization, runtimes (it is not required to have practical experience of all of these elements);
* Good knowledge of vulnerability and security analysis tools and platforms (e.g. Nessus, Burp, Kali-Linux);
* Good knowledge of development practices and knowledge of secure coding;
* Understanding and at least basic knowledge of cloud services, and of the different types and configuration of cloud services and applications potentially involving or not cloud;
* Certification according to CEH, or equivalent certification;
* Very good knowledge of English (Level C1) or very good knowledge of French (Level C1). Knowledge of both languages, one at C1 level and the other at B2 level in any configuration, is required;
* Proven organizational, problem-solving and interpersonal skills;
* Writing and communication skills, including the ability to participate in multilingual meetings.
This role is an on-site opportunity in Brussels, Belgium.
At QUALCO, we value diversity and inclusivity. Your race, gender identity and expression, age ethnicity or disability make no difference in Qualco. We want to attract, develop, promote, and retain the best people based only on their ability and behavior.
#J-18808-Ljbffr