Application Security Engineer

Do you want to be at the forefront of protecting our society against cyber threats? We are looking for an Application Security Engineer to team up with a passionate team of cyber specialists in our Secure Development domain. 

Secure Development

Applications and custom solutions are currently popular targets for threat actors. In modern application development, security must be present throughout all aspects of the development process. Our engagements span from AppSec-related security workshops, educating organizations in secure coding and DevSecOps, to longer assignments where we write code responsibly as integrated team members. We are a cyber tech company with our own custom software and services that we leverage both during assignments and with our clients. 

The Role

At Truesec, you’ll have the opportunity to work with a variety of customers and their development organizations, providing technical solutions to help them improve their security, based on their needs and current circumstances. Your tasks may include assessing proposed or existing systems for security vulnerabilities, conducting code reviews to identify potential issues, and helping clients develop more secure development processes. A big part in what you will do is advising and educating customers on risk.

You’ll also have the chance to engage in threat modeling exercises, which involve analyzing systems to identify potential security threats and developing strategies to mitigate them. In addition, you may participate in workshops and training sessions to help clients improve their security posture and ensure they are up-to-date on the latest techniques and best practices.

To ensure that you are well-equipped to handle these challenges, we provide ongoing training and support, including opportunities for continuous learning during work hours and attendance at industry conferences. Whether you are working independently or in a team, you’ll have the technical expertise and resources necessary to help our clients develop more secure and resilient systems.

Your Potential Background 

Application security is a broad area that encompasses a range of skills and expertise, and the right candidate for us could come from a variety of different backgrounds. If you are an application security engineer, you may have experience in threat modelling, vulnerability assessment, code review, or secure software development. You likely understand the importance of building security into the software development life cycle and are well-versed in industry-standard methodologies.

On the other hand, if you are a a developer with a keen interest in security, you might have experience implementing secure coding practices such as input validation, access control, and cryptography. You could also have experience with web application firewalls or other security technologies. 

If you are a penetration tester, you probably have a talent for finding weaknesses in systems and exploiting them to show their impact on business operations. You might also be interested in vulnerabilities and vulnerability research.

Finally, if you are an information security professional with an interest in the secure software development life cycle (SSDLC), you may have experience designing and implementing security policies, procedures, and controls that support the development of secure software.

In short, we believe your previous experience could include:
• DevSecOps and secure coding practices.
• Software architecture and design.
• Programming skills in one or more languages, preferably within either Java, C#, C/C++, Python, JavaScript, or Go.

If you have experience in any of the following, we will consider it a bonus:
• Cryptography/Authentication/Authorization.
• OAuth 2/OpenID Connect/JWT.
• Distributed systems/Docker/Kubernetes.
• AWS, Azure, or GCP.
• Threat modeling and security assessments of code.
• Penetration testing.
• SAST/DAST tools.
• Vulnerability management.

Application security is a broad area and we know that even if you have a different background than the ones mentioned you could fit right in, so don’t hesitate to apply.

About Truesec – A Leading Cybersecurity Company

Since 2005, Truesec has been a native cybersecurity company, driven by one single purpose: Creating safety and sustainability in a digital world by preventing cyber breach and minimizing impact.

Over the years, we’ve earned the trust of organizations worldwide and gained a strong reputation internationally. Our team consists of dedicated specialists covering the entire spectrum of cybersecurity – with capabilities in Predict, Prevent, Protect, Respond, and Recover.

Today, we employ around 350 employees – and as cybercrime grows, we need to grow. To support that goal, we are now looking for a Security Application Engineer who wants to make a difference.

Join Our Mission Toward a Safe Digital Future

If you truly want to make a difference and make our world a little bit safer, this is the place for you. At Truesec, you’ll get to be at the forefront of fighting cybercrime instead of reading about it in the news. This is your chance to be part of an exciting journey in a leading cybersecurity company – and learn from some of the best in their field.

Our assignments involve handling sensitive information, which is why we’re looking for candidates who either hold Swedish citizenship or have a valid Swedish work permit

So, are you ready to team up with the most dedicated team of experts and be part of a meaningful mission? Then we are excited to get to know you!

Apply now