Cyber Specialist/Operator

Descrição do trabalho

act digital is a multinational company present in 12 countries, which combines local agility and global expertise to act as a strategic partner for our clients in delivering customized and scalable solutions.

In Portugal, we have around 120 clients and a team of over 400 people, working on projects in sectors as diverse as Banking, Insurance, Transport, Aviation and Energy.

Job description

• We are looking for an Application Security expert to ensure a high level of security of the applications:
• To mainly ensure that developers’ DevSecOps activities related to SAST and SCA are done according to the security policies.
• To Identify global gaps and propose remediation strategy.
• To contribute to security frameworks improvements.
• To check how developers work with Fortify and Nexus IQ: alignment with development’s lifecycle, coverage of the scans.
• To check if findings are properly treated: vulnerabilities well remediated, no wrong false positive classification.
• To challenge the developers, support the remediation and acculturate them with Fortify, Nexus IQ and secure coding best practices.
• To develop tooling to automate as much as possible the DevSecOps effectiveness controls.

• Technical Skills:
• All kind of application: Business Web application, Mobile app, on prem / public cloud hosting…
• Jenkins, Bitbucket, Artifactory, Fortify, NexusIQ, API REST • For all kind of applications and languages (JAVA, JS, PHP, C#...).
• Application security.
• SAST.
• SCA.
• Python scripting Language Skills.
• English (at least B2) - mandatory.
• French language is not mandatory but well appreciated.

• Soft Skills:
• Organizational skills.
• Ability to collaborate / teamwork across multiple geographical locations.
• Decision making.
• Analytical ability/ Critical thinking / Attention to detail & Rigour.
• Autonomy.