Expoint - all jobs in one place

The point where experts and best companies meet

Limitless High-tech career opportunities - Expoint

Checkmarx Application Security Team Lead 
Portugal, Braga 
526162777

20.11.2024

How will you make an impact?

  • Client Engagement and Advisory:
  1. Act as the primary point of contact for clients in application security program development and implementation matters.
  2. Work closely with client stakeholders to understand their security objectives, evaluate their current security posture, and offer practical recommendations.
  3. Conduct regular meetings with clients to ensure ongoing alignment on project goals, milestones, and outcomes.
  • Program Implementation and Strategy:
  1. Lead the planning, design, and execution of comprehensive application security programs tailored to client needs.
  • Engineering Collaboration:
  1. Work closely with the engineering team to ensure that technical findings are effectively communicated to client teams.
  2. Provide structured client feedback to the engineering team to refine and improve security assessment and vulnerability remediation processes.
  3. Facilitate knowledge sharing between engineering and client teams to improve understanding and capabilities in application security.
  • Training and Enablement:
  1. Develop training sessions and workshops for client development and AppSec teams to improve security awareness and best practices.
  2. Help clients’ teams become self-sufficient in conducting security assessments and managing vulnerabilities through continuous enablement.
  • Continuous Improvement and Reporting:
  1. Track and report on program progress, KPIs, and outcomes to both internal and client stakeholders.
  2. Identify areas for improvement in both the client’s security posture and our internal processes.
  3. Stay updated on the latest trends and technologies in application security, compliance frameworks, and threat landscapes to improve client programs continuously.

What is needed to succeed?

  • Bachelor's degree in computer science or another highly technical scientific discipline.
  • Experience in programming languages like Java, .Net, Go, Python, etc.
  • Firm understanding of large enterprise-grade systems and architectures, as also as modern development paradigms.
  • Experience in security-testing applications covering some market standards AppSec Frameworks like OWASP Web/API/Mobile Top 10, PCI-SSD, etc.
  • A proactive approach to spotting problems, areas for improvement, and performance bottlenecks.
  • Strong technical aptitude
  • Highly motivated self-starter.
  • Fluent in English (++ for other languages).
  • Some international travel required (less than 10%)