Application Security SME

Do you know askblue?

We were born in 2013, and we provide services in the field of information technology.

We are looking for a Application Security Subject Matter Expert (SME) to join our company in one of our projects, in Remote.

Tasks:

• Tooling Ownership: Act as Product Owner for AppSec tools including Snyk, Invicti, Intigriti, and Sonatype;
• Project Leadership: Drive two critical migrations: Invicti (to a new platform supporting AI/GenAI scanning) and Sonatype (from on-premise to SaaS);
• Governance & Guidance: Guide the India-based CoE on day-to-day operations, handle escalations, and review dashboards;
• Security Reviews: Lead Design Security (DS) reviews, Code Review Reports (CRR), and perform/QA threat modeling (STRIDE, etc.);
• Stakeholder Management: Collaborate with developers, architects, and data science teams to improve secure SDLC practices.

Requirements:

• Seniority: 8+ years of experience in Application Security within custom development;
• AppSec Tooling: Strong hands-on knowledge of Snyk, Invicti, Sonatype, and Bug Bounty platforms (Intigriti);
• Methodology: Deep understanding of secure coding, vulnerability management, and threat modeling;
• Mindset: Ability to work at an expert/advisor level without being fully hands-on daily; proactive and autonomous;
• Communication: Excellent English skills (French or Dutch is a plus);
• Prior experience in Pharma/Life Sciences (desirable);
• Security certifications (AppSec or testing related) (desirable);
• Exposure to GenAI / LLM security topics (e.g., prompt injection scanning) (desirable).

Work Arrangement:

• 100% Remote

Offer:

• Health Insurance;

• 3 and a half days of leave per year + 22 vacation days;

• Unlimited access to Udemy.

If you are interested in the opportunity, upload your C.V. or send it to filipa.pinto@askblue.com with the reference #16787922 in the subject.

askblue - Where Business meets Technology