Software Security Engineer - Senior/Staff (F/m/x)
Aktuelle Original-Stellenanzeige
Quelle: StudySmarter Stellenbestand · Status: aktiv · Bewerbung über das zentrale StudySmarter-Formular.
Die ganze Ausschreibung von Enpal B.V.
Automatisch strukturiert · Originaltext unformatiert geliefert
Das ist der Job
Would you rather keep your pet company at home or your colleagues at the office?
Darum lohnt es sich
You will work closely with development, product, and DevOps teams to embed security practices, conduct threat modeling, and lead secure code reviews.
Responsibilities building secure solutions adopting Shift-Left and Zero-Trust approaches developing application Security Program : partner with software engineering and product teams to embed security across all stages of the SDLC (design, development, testing, deployment) conducting Threat Modeling & Risk Assessment : lead threat modeling sessions, drive secure design and code reviews, and perform application-level risk assessments establishing Security Training & Mentorship : serve as hands‑on security advisor to developers by offering training, guidance, and support on secure software development practices and security champions development enforcing Secure Coding Standards : define, maintain, and enforce secure coding standards, guidelines, and reusable security patterns across development teams Qualifications minimum 5 years of experience in application security, with a strong understanding of secure coding practices and application security vulnerabilities (OWASP Top 10, ASVS, MSVS) hands‑on experience embedding security throughout the entire software development lifecycle — from design and coding to integration and deployment hands‑on experience with threat modelling approaches STRIDE, PASTA, DREAD and supporting tools, like TMT, IriusRisk, etc. proficiency in multiple programming languages, .Net is a plus knowledge of cloud computing platforms; Azure is a plus experience with security tooling and automation across domains like SAST, SCA, DAST experience identifying and addressing security flaws in APIs and applications, with a solid understanding of OWASP principles relevant certifications, CSSLP, OSCP, OSWA are plus communicates clearly in English, spoken and written; knowledge of German is a plus inspired by the energy transition and want to make a difference wants to participate in a company where empowerment and initiative is valued agile and lean values are embodied: people over processes, code over documentation, reducing waste by building minimum viable products first, testing it with real users, growing and maintaining solutions as requirements evolve Additional Information Work in Germany's first green unicorn and actively shape the solar energy revolution.
The sun shines all over the world — at Enpal you will find a highly motivated and diverse team with more than 65 different nationalities. We fulfill every start-up cliché — in our modern office in Berlin-Friedrichshain, you'll find everything your heart desires, from a ping‑pong table and yoga corner to a roof terrace and stocked drinks fridges.
Your kick‑start at Enpal — Get to know the company, your team colleagues and our founder Mario on your onboarding day. Energy transition only works together — At Enpal, you can expect a legendary team spirit and unforgettable team events.
Job Description As a Staff Application Security Engineer (f/m/d), you will be responsible for ensuring the security of our applications throughout the software development lifecycle (SDLC). Even after the pandemic, we offer you a hybrid working model.
Stay up to date — Whether it's company figures at our monthly all‑hands meetings or how a photovoltaic system works at the Lunch & Learn, you'll always know exactly what's going on.
No mistakes, no progress — We live a strong feedback culture and grow with your input, either personally or anonymously via our feedback tool Culture Amp. #J-18808-Ljbffr
Bereit?
Bewerbung wird direkt an Enpal B.V. uebergeben - kein Konto noetig.
Aktuell die einzige offene Stelle bei Enpal B.V..
Neue Stellen kommen monatlich dazu — schau gerne später noch mal rein.