Senior Application Security Engineer Role

2 days ago


Athens, Attica, Greece beBeeSecurity Full time

We are seeking a seasoned security expert to lead our application security efforts. This role involves driving the design, implementation, operation, and monitoring of the Secure Software Development Lifecycle roadmap in accordance with business strategy and selected information security standards and best practices.

Key Responsibilities:

  • Define secure architecture patterns and specifications with software architects to guide software implementation
  • Perform threat modeling in software architecture and design artifacts prepared by software architects
  • Lead research and investigation activities to propose implementation of application security controls at the code level
  • Lead manual secure code review to identify and report security issues and weaknesses
  • Lead review of output from automated application security testing and perform triage activities to assess relevancy of discovered vulnerabilities, rate their security impact and propose mitigation actions
  • Lead scoped manual security verification assessments with specialized tools and prepare reports describing issues towards development teams
  • Develop and deliver application security training activities and workshops
  • Give presentations on technical application security topics towards internal development teams
  • Evolving implementation and configuration of scanning policies in DevSecOps tooling

Qualifications:

  • Bachelor Degree in Computer Science or Computer Engineering field. A Master's Degree in Information Security field would be highly appreciated.
  • Solid working experience in a relevant role
  • Advanced skills in understanding workflows written in programming languages such as Java, C#, JavaScript and/or Python;
  • Extended experience with identification and mitigation of OWASP Top 10 risks and CWE Top 25 vulnerabilities;
  • Hands-on experience with secure design and security controls implementation in software applications that follow the micro-services architecture pattern;
  • Practical experience performing threat modelling using relevant methodologies (e.g., STRIDE, PASTA, OCTAVE)
  • Advanced technical knowledge in the following domains: HTML, CSS, URLs, DOM, Browser/Server Communication, Web & Application Servers;
  • Technical knowledge in the following domains: Operating System Internals, Cloud Architecture, Container technology, Networking, Cryptography, Authentication mechanisms, Authorization controls, Input validation and DevSecOps;
  • Good knowledge of security verification tools such as Burp Suite, ZAP, SonarQube;
  • Good knowledge of risk measurement frameworks (e.g., CVSS, CWSS);
  • Excellent command of the English language (C2 level).

Desirable Qualifications:

  • Any Application Security certification, (e.g. CASE, CSSLP, CASS, CSP, GIAC Certified Web Application Defender).
  • Any Information Security related certification, (e.g. CISSP, CEH, ISACA's CSX, Microsoft AZURE Security Associate, AWS Certified Security Specialty).
  • Any other Application Security Micro-Learning certification, (e.g., Burp Suite Certified Practitioner, Online Course Completion certifications by Udemy, HackTheBox, etc.)
  • Hands-on experience in Software Development

Benefits:

  • Opportunity to work in a modern environment and hybrid working model
  • Seamless onboarding experience and buddy support
  • Competitive compensation and benefits package
  • Health and life insurance program
  • Meal and commuting allowance
  • Well-being activities on premises
  • Continuous learning opportunities using modern methods
  • Personalized development plan for targeted career growth

If you are looking forward to be part of a diverse environment and have the opportunity to work alongside well-experienced professionals, on challenging large-scale projects that directly impact millions of citizens around the globe, then this is the place to be.



  • Athens, Attica, Greece Uni Systems Full time

    At Uni Systems, we are working towards turning digital visions into reality. We are continuously growing and we are looking for a Senior Security Engineer to join our UniQue Security Engineering Services team.This role requires understanding of security solutions belonging to a variety of security domains such as: Azure Cloud security, Endpoint security,...


  • Athens, Attica, Greece Actionline Ltd. Full time

    Actionline Ltd., is a Greek company that specializes in the provision of innovative human resources solutions. Actionline is currently seeking on behalf of its client (a leading company in the energy sector), for a Senior Cyber Security Engineer.Description:In your role you will undertake tasks, such as:Design, implement, administrate, maintain, tune, and...


  • Athens, Attica, Greece beBeeSecurity Full time

    Job Description As a highly skilled Security Specialist, you will be part of an elite team responsible for shaping the future of technological landscape in Europe. You will drive the design, implementation, operation, and monitoring of the Secure Software Development Lifecycle roadmap of our organization according to the business strategy and selected...


  • Athens, Attica, Greece InTTrust Full time

    InTTrust is a trusted Technology and Digital Solutions provider creating value for customers, encompassing IT Consulting and Implementation services, Database Operation, Administration and Optimization services, IT Managed Services, Cloud Governance & Security services. We are experts on Digital Transformation Solutions, Custom Applications Development &...


  • Athens, Attica, Greece beBeeSecurity Full time

    Job Description:">Collaborate with cross-functional teams to identify and address security vulnerabilities in software applications.">Develop and implement secure design patterns and architecture reviews to ensure the integrity of software systems.">Work with development teams to integrate security best practices into the software development lifecycle,...


  • Athens, Attica, Greece Blend Technologies S.A. Full time

    IKH Group is a leading Software & Robotics Solutions group of companies operating internationally. Within just a couple of years, our team grew up more than 80% and we kicked off 2024 with several new and exciting projects in digital transformation, custom software and robotics.  Blend Technologies, part of IKH Group, is a brand-new Technology and...


  • Athens, Attica, Greece beBeeDevsecopengineer Full time

    Job OpportunityWe are seeking a skilled DevSecOps Engineer to join our team. As a DevSecOps Engineer, you will play a crucial role in designing and maintaining product security tools and services.Key ResponsibilitiesWork with cross-functional teams to design and maintain best-in-class product security tools and services.Promote the use of DevSecOps...


  • Athens, Attica, Greece Elpedison Full time

    # One Group | One PowerELPEDISON is the first independent energy utility in Greece, and a leader in providing outstanding and innovative energy solutions. We operate with enthusiasm in what we do and we pride ourselves of offering our employees a place where they can excel, creating value. We are offering now a set of exciting positions in our headquarters...


  • Athens, Attica, Greece beBeeCybersecurity Full time

    About Cyber Security GRC Senior Consultant RoleThis is a senior position in our team focused on providing cybersecurity and data protection strategies to clients across various industries.As a Cyber Security GRC Senior Consultant, you will work closely with clients to identify their cyber risks and develop innovative solutions to mitigate them. You will also...


  • Athens, Attica, Greece Blueground Full time

    Redefining how people live.At Blueground, we believe that when your base is reliable, the world opens up. That's why we're building the world's leading platform for living.Every year, 350 million people move between cities—yet today's housing options haven't caught up with the needs of this modern, mobile generation. Blueground was built to change...