Security Expert - Mechelen, België - Eurofins

Eurofins

Geverifieerd bedrijf

Mechelen, België

4 weken geleden

Geplaatst door:

Sophie Dubois

beBee Recruiter

Beschrijving

We are seeking a Security Expert (Static Application Security Testing) for a leading telecommunications company operating in the digital services sector in Belgium.

This client plays a significant role in connecting individuals, households, and businesses by providing innovative solutions that meet their ever-changing needs

By leveraging advanced infrastructure and groundbreaking technologies, this company enables seamless communication, entertainment, and connectivity experiences for its customers.

This organization is known for its commitment to customer satisfaction and has built a reputation for delivering high-quality services and contributing to digital transformation.

With a focus on empowering users, our client continues to shape the telecommunications landscape and support individuals and businesses.

The highly skilled and experienced Security Expert has expertise in Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and/or Software Composition Analysis (SCA).

You will work closely with cross-functional teams to implement and enhance security measures throughout the software development lifecycle.

Collaborate with central security team to introduce and scale industryleading security testing tools and methodologies to conduct thorough security assessments.
Analyze source code, binaries, runtime behavior, and software dependencies to identify and prioritize security issues.
Collaborate with development teams to provide guidance and recommendations for secure coding practices and vulnerability remediation, to review failed tests and remove false positives.
Automate tests where possible, while providing best practices and guardrails to development teams to shiftleft security testing
Collaborate with CI/CD team to integrate tooling as much as possible in automated pipelines
Participate in threat modeling activities to identify potential security risks and develop appropriate mitigation strategies.
Stay uptodate with the latest security trends, vulnerabilities, and attack vectors, and provide proactive recommendations to enhance security measures.
Collaborate with stakeholders to define and enforce security policies, standards, and best practices.
Provide expertise and support during incident response and security investigations.
Conduct security awareness training for developers and other relevant stakeholders.
Contribute to the development and improvement of security testing frameworks, methodologies, and tools.

Qualifications

Proven experience and expertise in performing SAST, DAST, and/or SCA assessments.
Strong knowledge of secure coding practices, common vulnerabilities, and attack techniques.
Experience with industryleading security testing tools such as Veracode, Checkmarx, Burp Suite, OWASP ZAP, SonarQube, Black Duck, or similar tools.
Familiarity with software development languages, frameworks, and platforms (e.g., Java,.NET, JavaScript, Python, etc.).
Knowledge of cloud security concepts and technologies (AWS, Azure, GCP) is a plus.
Excellent analytical, problemsolving, and communication skills.
Relevant certifications such as CISSP, CSSLP, CEH, GWAPT, or equivalent are highly desirable.
Experience with GitLab is a bonus.

Additional Information

You become part of an organization that values both your professional and personal wellbeing.
We offer a salary that matches your added value as well as maturity and seniority
You can join a wellness program to support your physical, mental and financial health.
You receive an annual training budget, which you can freely spend, including 5 nonbillable days to follow your courses.
We regularly organize social events for our employees to promote a positive and inclusive work culture.
You will be part of a team where you can grow, both professionally and personally.