Application Security Engineer

Your responsibilities: 

  • Commit to the protection of GSK"s web and mobile applications and information assets.
  • Provide proper operation of security testing services and tools.
  • Determine and implement efficient security and compliance controls within CI/CD pipelines to enable agile development efforts.
  • Offer enhancements of the GSK Secure Software Engineering Strategy.
  • Propose service changes and improvements in response to the constantly evolving information security landscape.
  • Distribute the service within the defined SLA, providing an enhanced user experience in the global service line through solutions that are agile, well optimized and cost effective.
  • Cooperate with developers, project leads and business customers to explain application security issues and their potential business impact.
  • Collaborate with diverse product and platform teams throughout GSK to promote the embedding of security into Software engineering processes.
  • Assure alignment of the tool with the GSK standards and policies.
  • Maintain users in the use of security tools.
  • Being a part of development teams.
  • Rush and support a variety of automated security tools and services embedded throughout the application lifecycle such as Threat Modelling, SCA, SAST, DAST.
  • Give to the updates of internal standards, policies, processes and learning materials to reflect changes in secure application development space and investment in new tools.
  • Implement processes for remediation of findings and vulnerabilities identified in security testing.

We require: 

  • Ratified track record of working in an IT group with experience in application security, threat analysis or vulnerability management.
  • Minimum 1 year background in more than one of the following: DevSecOps, web / mobile application development.
  • Good knowledge of Open Web Application Security Project (OWASP) testing guides and methodologies for web and mobile applications.
  • Experience of working with various categories of security testing tools, e.g. VM scanners, SAST, DAST etc. 
  • Backdrop in software development (Python / Golang / Java).
  • Practice with building solutions on cloud platforms (Azure and GCP).
  • Experience of working in an Agile team (Scrum, VFQ, SAFE).
  • Excellent English (B2/C1).

We offer: 

  • Work from home (remote).
  • Work in the multinational company.
  • Set of social benefits to choose from.
  • Training program.
  • Participate in international projects and gain.

   The Application Security Testing function delivers global services and technology capabilities to ensure alignment with the strategy and key investment areas identified in the Application Security space.

Podziel się

Prosimy o dopisanie do CV oraz listu motywacyjnego następującej klauzuli:
"Wyrażam zgodę na przetwarzanie moich danych osobowych zawartych w mojej ofercie pracy dla potrzeb niezbędnych do realizacji procesu rekrutacji (zgodnie z ustawąz dn. 29.08.97 roku o Ochronie Danych Osobowych Dz. Ust Nr 133 poz. 883)".

L.M. GROUP POLAND Sp. z o.o.
Lublin, lubelskie

CV jest wymagane

Ogłoszenie nieaktualne
Aplikuj