Job Details

Join Toreon, the cybersecurity company that's all about empowering individuals and organizations in the field of cybersecurity. Our team of over 50 security domain experts is driven by knowledge and impact, partnering with companies to define and implement strategic security roadmaps. Through coaching, training, and collaboration, we increase our clients' security maturity, as well as our own expertise.

ABOUT THE CHALLENGE

Join a dynamic and dedicated application security dream team comprising 9 passionate Toreonites who are already deeply immersed in a multitude of exhilarating security projects.

As an esteemed application security consultant, your role will involve offering expert advice and consultation across the entire Secure Software Development Life Cycle (SSDLC). You'll be the guiding light when it comes to fortifying software architecture security, which includes crafting intricate application threat models and meticulously safeguarding against any business logic or design flaws that could potentially introduce security vulnerabilities. Your expertise will extend to enhancing CI/CD pipeline security and optimizing all associated processes. Your voice will carry weight as you discuss extensive enterprise software architectures and software development practices, leveraging your profound knowledge of security architecture, methodologies, policies, and best practices.

You won't just be an advisor from the sidelines; you'll actively roll up your sleeves, remaining deeply involved in the technical aspects. You'll assist customers in implementing cutting-edge security tools, tailor reports to their needs, and swiftly generate tickets to rectify any security issues that arise.

Collaboration is the cornerstone of our success, and alongside your exceptional team, you'll embark on explorations of new horizons, staying at the forefront of the ever-evolving landscape of application security and threat modeling. At Toreon, we offer you the opportunity to leave a lasting impact, not only within your team but also in delivering invaluable security solutions to our esteemed clients. Join us, and together, we'll shape a safer digital world.

INSIDE OUT

• You have excellent communication and persuasion skills that inspire customers and your team to exceed their goals.
• You have a constant desire to stay up-to-date with the latest application security techniques and training, ensuring that your team always has the competitive edge.
• Inspiring advisor with strong people skills, adaptability, and motivational insights.
• Responsible and respectful professional with top-notch performance and discretion in handling sensitive information.
• Passionate learner and knowledge-sharer making a big impact in the business world.

PROFESSIONAL SKILLS

Experience in application security concepts such as:

1. Secure Software Development Lifecycle
2. OWASP SAMM and practical implementation
3. Requirements gathering and test planning
4. Software architecture
5. Secure coding

You have a solid understanding of vulnerability scanning mechanisms (DAST, SAST, SCA etc) and associated tools.

You are able to do quality control of your own work and that of your colleagues.

You have presentation and writing skills of a high standard.

Knowledge and experience with threat modeling is a plus.

EDUCATIONAL REQUIREMENTS

You are in possession of a relevant master/ bachelor's degree within IT and you have at least 2 years of programming experience.

Relevant security certifications like AZ-104, AZ-204, AZ-303, AZ-304, AZ-400, AZ-500, SC-300, CISSP etc. or intending to attain them.

WHAT YOU CAN EXPECT

A scaling-up cybersecurity company that's making a difference in the world

A fun, educational environment where knowledge sharing is king

A team that loves to work hard and play hard

An open feedback culture that values your input

Room for your own initiatives and plenty of opportunities to grow

A learning path and expansive training budget to help you achieve your goals in the field and as a consultant.

A flexible work environment that respects your work-life balance

And, of course, we offer you an attractive salary package, a team you can learn from and you will be supported in obtaining certificates and other training.

Don't worry if you don't check off all the requirements for this amazing opportunity. We believe in your unique awesomeness and talents. Attitude and culture fit matter just as much. So, let's chat, bring your unique self and let's rock the endless possibilities together!