FermerX

Application Security Specialist

Veszprem, Hungary S/W Engineering
View all opening positions

We are looking for an APPLICATION SECURITY SPECIALIST  to join our growing software developer team. We do agile development as a team. As a member of our team in VESZPRÉM, you will be involved in every stage of the software development lifecycle, focusing especially on the application security-related tasks.

What You Will Be Doing

  • Based on your experience, industry trends, technical skills, and knowledge you will produce Security architecture & Proof of concepts

  • Work closely with the product teams to understand our products in depth to document the product details including the security architecture, attack surface, trust boundaries and data flows

  • Develop and test security features within applications to prevent security vulnerabilities against threats such as unauthorized access and modification

  • Participate in and support application security reviews and threat modeling

  • Lead the documentation of product cybersecurity requirements, verification and validation protocols.

  • Own and perform security vulnerability management

  • Assist in development of automated security testing to validate that secure coding best practices are being used

  • Assist in conducting security verification and validation efforts

  • Reinforce security awareness among developers

  • Remaining up to date with the latest security systems, standards, authentication protocols, and products

What We Need From You

  • Knowledge of application software security concepts, protocols

  • Understanding of OWASP Top 10 and CWE Top 25 vulnerabilities

  • Experience in static/dynamic analysis

  • Understanding of developer tools and environments e.g.: Bitbucket, TeamCity

  • Experience with project management tools

  • Understanding of an organization's technology and IT systems  

  • Awareness of security standards and frameworks

  • Fluent English language knowledge

It would Be Nice To Have

  • Experince with SonarQube, Black Duck, Acunetix,  Wireshark

  • Knowledge of CERT Coding Standards

  • CISSP certification or other relevant security certifications, or corresponding work experience

  • Experience in IT operation and project management

About OPSWAT 

OPSWAT is a global leader in critical infrastructure cybersecurity that helps protect the world's mission-critical organizations from malware and zero-day attacks. To minimize the risk of compromise, OPSWAT Critical Infrastructure Protection (CIP) solutions enable both public and private organizations to implement processes that ensure the secure transfer of files and devices to and from critical networks. In total, 98% of U.S. nuclear power facilities and more than 1,000 organizations worldwide spanning Financial Services, Defense, Manufacturing, Energy, Aerospace, Transportation Systems trust OPSWAT to secure their files and devices; ensure compliance with industry and government-driven policies and regulations, and to protect their reputations, finances, employees, and relationships from cyber-driven disruption. For more information, visit www.opswat.com

OPSWAT is an equal opportunity employer. We celebrate diversity and are committed to providing an environment where equal employment opportunities are extended to all employees and applicants, free of discrimination and harassment of any type. All employment decisions are based on individual qualifications, job requirements, and business needs without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other category protected by federal, state, or local laws.

Interested in this position?

I really enjoy working at OPSWAT, it's like my second home. OPSWAT is indeed an ideal working space where everybody is super friendly and proactive- and the enthusiasm from management team creates a great environment.

Vy Thai - HR Officer