CISOC Application Security Engineer

We are looking for an Application Security Engineer to join our CISOC team, responsible for implementing and managing SAST tools and supporting secure software development across the organization. TASKS : The ideal candidate will have a strong background in software development and security, with a particular focus on the implementation and use of SAST tools:

• Implement and manage SAST tools across the organization.
• Conduct security assessments of applications using SAST tools.
• Provide training and guidance to development teams on the use of SAST tools and secure coding practices.
• Participate in the development and enforcement of security policies and procedures.
• Help to formulate vulnerability management frameworks & working structures.
• Perform tasks including research, classification and analysis of security events and vulnerabilities detected.
• Act as point of contact for managing & delivering various vulnerability & remediation reports.
• Working in close collaboration with the IT Team members and stakeholders to deliver and implement technology solutions in support of the business objectives to improve productivity and enhance processes and security.
• Understand BI framework and follow defined processes. Ensure compliant documentation requirements and guarantee its production as required according to the SOPs and working instructions.
• Work with various risk & information security teams in presenting vulnerability management status & updates to technology subject matter experts & management.

• Strong background in DevSecOps, application security, SAST tools, and secure coding practices
• Experience with CI/CD pipelines (Jenkins) and container orchestration (Kubernetes/OpenShift)
• Proficiency in scripting languages (Python, PowerShell, or Bash), * Knowledge of security vulnerabilities, threat mitigation, and remediation processes (triage, prioritization, change management)
• Ability to work in international, multicultural environments with strong English communication skills
• Solid analytical, problem-solving, teamwork, and results-driven mindset
• Familiarity with automation, APIs, and AI in DevOps, including LLMs, agent-based systems, and workflow orchestration
• Relevant security certifications are a plus but not mandatory

08h-17h from Monday to Friday (flexible) 4 days remote, on-site every Thursday. CONDITIONS : Salary package based on your profile. Ticket restaurant included in-office hours. Flexible compensation plan (free of income tax) where we provide you with medical insurance, public transport ticket and childcare check. Discounts in gym network. Training catalogue. Our goal is that you are well in every way!