CluePoints is a disruptive SaaS company developing software and services that revolutionize how clinical trials are managed and new drugs are brought to market. Established in 2012, we have taken the Pharmaceutical industry by storm and are looking for exceptional individuals to join our dynamic team and help us ride the wave of growth we are seeing. As part of our new product introduction and market expansion we are looking for an Application Security Engineer to reinforce the CluePoints Security Team. The Application Security Engineer, will report directly to the Information Security Officer and will work closely with the Product and Engineering teams to help them secure CluePoints’ software products.
Tasks & Responsibilities:
Perform security validation of application design.
Perform Threat modeling.
Participate in leading the security champions program.
Coach and help security champions in their daily activities.
Perform code review when needed.
Help improving the DevSecOps strategy.
Analyze, prioritize and coordinate the fix of vulnerabilities revealed by the different scanning tools.
Coordinate penetration testing activities related to the CluePoints’ products.
Be the Single Point Of Contact (SPOC) for the Engineering and Product teams for all application security questions.
Requirements:
5+ years of experience working in the security field or on projects where security was top priority.
Software engineer experience
BA or MS in relevant field.
Fluency in English.
Able to coordinate with and explain security concepts to stakeholders from different backgrounds/departments.
Proficiency in at least one high-level language (e.g. Python, Javascript, etc.).
Understand of application development processes.
Knowledge of application security concepts such as threat modeling, secure coding practices, infrastructure security principles, architecture, and network layers.
Experience in vulnerability management.
Knowledge of OWASP and MITRE ATT&CK frameworks.
Good knowledge and preferably experience in a broad range of security technologies including WAF, SAST, DAST, SCA and penetration testing tools.
Familiar with SOC 2, ISO27001, NIST CSF or PCI-DSS
Up-to-date knowledge of cybersecurity threats, current best practices, threat modeling and risk mitigation techniques.
Strong leadership abilities
Why Join Us?
Flexibility is part of our DNA and you’ll find at CluePoints you can work 100% from home or chose to come to the office any day
If you choose to come to the office, you’ll discover a fun atmosphere with kicker, PS5, arcade machine, nerf battles, dartboard and our newly added ping-pong table.
If you feel like a change of scenery, we have recently added the option to work at co-working spaces throughout Belgium.
Many activities are organized during the year, such as soccer, team lunches, happy hours, LAN parties, hiking, board games nights! We also have running groups, languages lessons, and much more!
At CluePoints, learning, training and personal growth are part of the game: you’ll have access to online training materials, certifications sponsored by the company, personal growth plans, and career paths to explore new opportunities.
You’ll work with a fast-growing, multi-disciplinary and international team representing over 20 different nationalities, in an English-speaking working environment.
You’ll have a challenging and rewarding job in an ambitious and fast-paced technology scale-up that has received many national and international awards including “Scale-Up of the year 2019”!
Last but not least, we offer competitive salary and benefits, company car, bonus potential, employee referral program.