Description
**Candidates based in Bulgaria only**
Role: Software Security Engineer
Overview:
We’re looking for a detail-oriented Software Security Engineer to enhance software security across the SDLC, aligned with SDOL practices. The role involves security assessments, tool management, and collaboration with cross-functional teams to integrate and enforce secure development standards.
Key Responsibilities:
Perform security assessments (vulnerability scans, pen testing, risk analysis)
Manage SAST tools, analyze vulnerabilities, and reduce false positives
Monitor security logs and respond to incidents
Maintain and resolve Jira security backlogs
Report on software security posture and compliance
Support SDOL implementation and documentation
Embed security into CI/CD pipelines (SAST, DAST, dependency scanning)
Align policies with compliance standards (ISO 27001, SOC 2, HIPAA, GDPR)
Optimize security tools and processes
Facilitate threat modeling and risk assessments (LeanIX, Signavio)
Assist with audits and certifications
Document security architecture and procedures
Collaborate on security concepts with architects and stakeholders
Qualifications:
Experience in software/application security or DevSecOps
Proficient with security tools (SAST, DAST, scanners, modeling tools)
Familiar with SDLC, secure coding, and compliance standards
Skilled in Jira and backlog management
Strong analytical and communication skills
Threat modeling certification preferred
Role: Software Security Engineer
Overview:
We’re looking for a detail-oriented Software Security Engineer to enhance software security across the SDLC, aligned with SDOL practices. The role involves security assessments, tool management, and collaboration with cross-functional teams to integrate and enforce secure development standards.
Key Responsibilities:
Perform security assessments (vulnerability scans, pen testing, risk analysis)
Manage SAST tools, analyze vulnerabilities, and reduce false positives
Monitor security logs and respond to incidents
Maintain and resolve Jira security backlogs
Report on software security posture and compliance
Support SDOL implementation and documentation
Embed security into CI/CD pipelines (SAST, DAST, dependency scanning)
Align policies with compliance standards (ISO 27001, SOC 2, HIPAA, GDPR)
Optimize security tools and processes
Facilitate threat modeling and risk assessments (LeanIX, Signavio)
Assist with audits and certifications
Document security architecture and procedures
Collaborate on security concepts with architects and stakeholders
Qualifications:
Experience in software/application security or DevSecOps
Proficient with security tools (SAST, DAST, scanners, modeling tools)
Familiar with SDLC, secure coding, and compliance standards
Skilled in Jira and backlog management
Strong analytical and communication skills
Threat modeling certification preferred