Talent.com
Ta oferta pracy nie jest dostępna w Twoim kraju.
Tech Lead Application Security (Remote)

Tech Lead Application Security (Remote)

PTT ConsultingPl. Bankowy 2, Warszawa
10 dni temu
Opis pracy

Czym będziesz się zajmować?

Responsibilities :

  • Lead the application security program, including tool selection, policy enforcement, developer engagement, and risk reporting.nbsp;
  • Own integration of AppSec tooling into CI / CD pipelines to enable scalable, developer-friendly security controls.nbsp;
  • Provide architectural guidance and secure design recommendations during development planning.nbsp;
  • Oversee deployment and tuning of tools for SAST, SCA, secrets management, IaC scanning, and DAST (e.g., Tenable Web App Scanning).nbsp;
  • Partner with product teams to embed secure coding practices, review threat models, and triage high-impact vulnerabilities.nbsp;
  • Collaborate with GRC / compliance teams to ensure alignment with relevant standards (e.g., OWASP, FedRAMP).nbsp;
  • Mentor and support other AppSec engineers and champion a security-first development culture.nbsp;
  • Evaluate IAST and runtime protections as part of continuous improvement efforts.nbsp;
  • Develop KPIs to measure security posture and tooling efficacy.nbsp;

Kogo poszukujemy?

We are seeking a Lead Application Security Engineer to drive the strategy, implementation, and maturity of our application security program.

This person will lead initiatives across the secure software development lifecycle, integrating application security best practices and tooling into engineering workflows, and partnering closely with security, DevOps, and engineering leadership.

Requirements :

  • 6–10 years of experience in Application Security or Secure Software Development.nbsp;
  • Proven experience leading application security programs in a CI / CD-heavy engineering environment.nbsp;
  • Deep expertise in securing cloud-native applications, and integrating AppSec tools such as Semgrep, Mend, GitHub Advanced Security, HCL AppScan, or equivalent.nbsp;
  • Hands-on experience with CI / CD integrations using GitHub Actions, GitLab CI, Jenkins, or similar.nbsp;
  • Strong communication and influencing skills; able to drive security adoption across diverse teams.nbsp;
  • Knowledge of DAST tools (e.g., Tenable Web App Scanning) and Pentest methodologies (Burp Suite, Kali Linux).nbsp;
  • Experience with security in modern SDLC environments using containers, microservices, and APIs.nbsp;
  • IAST experience is a plus.nbsp;
  • Czego wymagamy?

    6 lat doświadczenia na podobnym stanowisku

    Znajomości :

  • GitHub Advanced Security
  • Semgrep
  • Mend
  • HCL AppScan
  • GitHub Actions
  • GitLab CI
  • Jenkins
  • Języki :
  • Angielski
  • Jakie warunki i benefity otrzymasz?

  • 30200-42000 PLN miesięcznie
  • B2B - Elastyczne godziny pracy (100%)
  • Praca zdalna : W całości
  • Kim jesteśmy?

    Tech Lead Application Security will work for a global leader in gaming, who deliver entertaining and responsible gaming experiences for players across all channels and regulated segments, from Gaming Machines and Lotteries to Sports Betting and Digital. Leveraging a wealth of compelling content, substantial investment in innovation, player insights, operational expertise, and leading-edge technology, company’s solutions deliver unrivaled gaming experiences that engage players and drive growth. The company has a well-established local presence and relationships with governments and regulators in more than 100 countries around the world, creating value by adhering to the highest standards of service, integrity, and responsibility.

    Utwórz powiadomienie o ofertach pracy dla tego wyszukiwania

    Tech Lead • Pl. Bankowy 2, Warszawa