Delivering excellence in Software R&D, Application Management, Cloud & Infrastructure, Cybersecurity, and BPO for clients worldwide, Infopulse has built a reputation as a trusted full-service solution provider. Founded over 30 years ago, Infopulse today is represented in 7 countries across Europe and North America.
Infopulse efficiently combines in-depth industry knowledge and technological expertise to deliver enhanced business value to its customers. We provide technology services and solutions for Agriculture, Banking & Finance, E-Commerce & Retail, Energy & Utilities, Healthcare & Pharmaceuticals, Manufacturing, Software & High-Tech, Telecom, and other industries.
Infopulse operates in accordance with European company culture, tolerance, and compliance, which is highly appreciated by both our clients and employees. As a part of TietoEVRY, one of the largest IT companies in the Nordics, Infopulse also strictly complies with the policies and guidelines set by the parent company.
Infopulse is a certified partner of Microsoft, SAP, Amazon, Citrix, IBM, OpenText, and complies with the highest international corporate governance standards, being ISO 9001, ISO 27001, and ISO 14001 certified.
The security specialist will be collaborating closely with our Application Development, DevOps and Production Support teams with a focus on defining processes and standards, ensuring that corporate requirements and best practices are implemented in SDLC.
Infopulse welcomes talented professionals to join our team as an Application Security Engineer. The security specialist will be collaborating closely with our Application Development, DevOps and Production Support teams with a focus on defining processes and standards, ensuring that corporate requirements and best practices are implemented in SDLC. In this role, the specialist will collaborate closely with all our internal and our customer’s development teams to ensure adherence to security policies, processes and standards, provide information security recommendations and guidance in order to identify, manage, and mitigate security risks.
Areas of Responsibility • Perform system & application security requirements review, definition and clarification • Conduct security audits for corporate systems, perform application security testing. • Participate in threat modelling and application risk assessment • Work closely with development teams to support integration of the best security practices into their development processes • Participate in enhancement of SAST/DAST/IAST integration into application CI/CD pipeline • Contribute to corporate SDLC enhancement, design and implement security controls and best practices • Investigate and pilot commercial and open-source application security tools • Participate in developing corporate regulations, technical reports, and presentations related to application security
Qualifications • Bachelor's or master’s degree in computer science or related field, or equivalent experience • 3+ years of experience in secure development, technical security audit or security consulting areas • Solid understanding of fundamental building blocks of application security such as: authentication, authorization, data validation, encryption, security assurance • Good understanding of software architectures and technologies (including web application architectures, operating systems architectures, cloud architectures, TCP/IP Stack, software development processes) • Detailed familiarity with application security concepts/standards/laws/best-practices (e.g. OWASP, CIS, NIST SP 800, ISO 27K series) • Experience in security testing, application threat modelling and systems/applications security risk assessment • A burning desire to grow in both engineering and security expertise
Will be an advantage • Practical experience in using popular commercial and open-source security testing tools (e.g. Acunetix, Nessus/Tennable.io, Burp, ZAP, Kali Linux) • Practical experience in Microsoft Cloud Security • Good understanding of at least two of following programming languages (i.e. ability to figure out what’s going on by looking at code snippets): C#, C++, Java, Python, JS • Practical experience in application development, secure coding and scripting languages for automation • Practical experience in hardening systems
Personal Skills • Well-developed analytical and problem-solving skills • Strong ability to conduct research • Ability to work independently • Ability to manage multiple tasks according to priorities • Being a result-oriented person • Having good communication skills (writing and speaking), including giving presentations.
Keywords: engineer, Office/Remote of your choice, application, security