As a Cybersecurity Engineer, you will join a Cybersecurity Competency Center responsible for strengthening and maintaining the security posture of applications across a large and diverse IT landscape within a banking and financial services environment.
Your primary mission will be to ensure application security by performing vulnerability management and secure development lifecycle (SDLC) activities, supporting development teams, and contributing to the continuous improvement of security controls and practices.
Key Responsibilities
-
Support the deployment and maintenance of code analysis and dependency security solutions
-
Participate in the implementation and continuous improvement of Secure Development Lifecycle (SDLC) processes
-
Implement and perform application security scans:
-
SAST (Static Application Security Testing)
-
SCA (Software Composition Analysis)
-
DAST (Dynamic Application Security Testing / Web Application Scanning)
-
Assess, qualify, and prioritize vulnerabilities identified through multiple security tools and sources
-
Collaborate closely with development teams to identify, mitigate, and remediate security risks
-
Support development teams in the implementation of security controls and secure coding practices
-
Track remediation actions and ensure compliance with agreed deadlines
-
Participate in the definition, measurement, and reporting of application security KPIs
-
Contribute to the animation of the Application Security (AppSec) community through:
-
Security awareness initiatives
-
Promotion of best practices
-
Secure coding guidance