Senior Application Security Engineer

Louvain-La-Neuve, Belgium

We are looking for an Application Security Engineer to reinforce the CluePoints Security Team. As Application Security Engineer, you will closely work with the Product and Engineering teams to help them secure CluePoints’ products. You will report to the Information Security Officer.

Tasks & Responsibilities:

  • Perform security validation of application design.
  • Perform Threat modeling.
  • Participate in leading the security champions program.
  • Coach and help security champions in their daily activities.
  • Perform code review when needed.
  • Help improving the DevSecOps strategy.
  • Analyze, prioritize and coordinate the fix of vulnerabilities revealed by the different scanning tools.
  • Coordinate penetration testing activities related to the CluePoints’ products.
  • Be the Single Point Of Contact (SPOC) for the Engineering and Product teams for all application security questions.

Requirements:

  • 7+ years of experience working in the security field.
  • Software engineering experience.
  • BA or MS in relevant field.
  • Fluency in English.
  • Able to coordinate with and explain security concepts to stakeholders from different backgrounds/departments.
  • Proficiency in at least one high-level language (e.g. Python, Javascript, etc.).
  • Understand of application development processes.
  • Knowledge of application security concepts such as threat modeling, secure coding practices, infrastructure security principles, architecture, and network layers.
  • Experience in vulnerability management.
  • Knowledge of OWASP and MITRE ATT&CK frameworks.
  • Good knowledge and preferably experience in a broad range of security technologies including WAF, SAST, DAST, SCA and penetration testing tools.
  • Up-to-date knowledge of cybersecurity threats, current best practices, threat modeling and risk mitigation techniques.
  • Strong leadership abilities