Devoteam Cyber Trust | Application Security Analyst / Secure Code Review Specialist | Banking Sector
- Full-time
- Contract type: Permanent contract
Company Description
Devoteam Cyber Trust is the specialized cybersecurity unit of the Devoteam Group. With over 800 experts across the EMEA region, our mission is to position cybersecurity as a business enabler, not a barrier. We take a comprehensive approach to Cyber Resilience, Applied Security, and Security Service Management to safeguard the digital journey of large and mid-sized enterprises across all sectors and industries.
Since 2009, previously known as INTEGRITY, our Portugal-based team has specialized in delivering cutting-edge Managed Security Services. By combining expertise with proprietary technology, we consistently and effectively reduce our clients' cyber risk. Our wide range of services includes Persistent Penetration Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. Certified in ISO 27001 (Information Security) and ISO 9001 (Quality), PCI-QSA, and members of CREST and CIS (Center for Internet Security), we serve a significant number of clients in over 20 countries.
Job Description
Ensure that eligible assets are subject to regular code reviews using Static Code Analysis (SCA) and Static Application Security Testing (SAST) tools.
Provide support to Security Champions in the remediation of identified vulnerabilities.
Ensure that detected vulnerabilities are remediated within the defined deadlines.
Collect evidence when required, including from third parties, to ensure compliance with remediation processes.
Provide accurate data to support the definition and monitoring of KPIs.
Monitor that all eligible assets, both internal and external, are properly covered by code review tools.
Analyze scan results, prioritize vulnerabilities, propose remediation plans, and ensure appropriate follow-up with the concerned entities.
Track and support the implementation of remediation actions to guarantee their effectiveness.
Qualifications
Professional Experience: Minimum of 5 years of proven experience in the Information Technology field, with a solid background and exposure to different areas within IT.
Broad IT Vision: Ability to understand and analyze the technology ecosystem from a wide perspective, identifying trends, risks, and opportunities, while aligning technological solutions with business needs.
Cybersecurity: Strong knowledge or practical experience in cybersecurity, considered a valuable asset for this role.
Language Skills: Proficiency in English, both written and spoken, to ensure effective communication with international teams and accurate production of documentation and reports.
Reporting & Analysis: Ability to produce regular and ad-hoc reports on various IT-related topics, ensuring clarity, accuracy, and actionable insights.
Analytical & Reporting Tools:
Advanced knowledge of Microsoft Excel, including formulas, pivot tables, advanced functions, and dashboard creation.
Experience with Power BI, with the ability to design, develop, and maintain interactive reports and dashboards to support decision-making processes.
Additional Information
What we offer:
- Professional development and monitoring talent;
- Commitment to our employees' development;
- Collaboration in a company that is constantly growing and evolving;
- Strong organizational culture: collaboration, sharing, flexibility, integrity and low ego.