OBS! Ansökningsperioden för denna annonsen har
passerat.
Arbetsbeskrivning
We are looking for a software security expert with hands-on development experience to join Dstny.
Quality is a top priority in their offering, and developing secure software is paramount to achieve this fully. We have a wide range of products to secure. They are a mobile-first solution, including web-based products, a softphone, collaboration tools, call recording options, API integration, etc.
Dstny is the largest European-based cloud communications software provider offering Unified Communications-as-a-Service (UCaaS) and Fixed Mobile Convergence (FMC) platforms to Service Providers throughout Europe, Asia, and Africa. With market shares exceeding 60%, this business has changed the communications market landscape in the Nordics by enabling the migration from on-premises PBX to mobile-first UCaaS working in partnerships with some of the world’s most forward-thinking Service Providers such as Telia, Tele2, and Hi3G.
In short, they focus on connecting people, allowing them to focus on collaborating and building relationships via cool technology. Now they are looking for new ideas, energy, and ways of working to continue propelling us forward. Join them!
What you’ll do:
Be responsible for our secure software development lifecycle (SSDLC)
Lead and recommend secure R&D development best practices across the organisation.
Work with tools, e.g. Confluence and Jira, to put the best practices in place
Research and keep abreast of the latest threats and developments to keep ahead of them.
Recommend and visualise security risks to help prioritise closing vulnerabilities.
If a breach or attack does occur, the security expert leads the response effort to safeguard the remaining data, determines how the event occurred and minimizes financial loss and work interruptions.
Who you are
We are looking for you, a team player with great collaboration and communication skills. You can find great solutions through collaboration with different teams. You are self-driven and engaged with a will to encourage people, as well as resilient and result-driven with a persuasive, flexible, and passionate personality.
To be a good fit for this position, we see that you also have the following:
Strong communication skills to be able to work effectively across different departments and different levels of technical expertise
Determine security violations and inefficiencies by conducting periodic audits
Proven work experience as a Cyber Security Specialist or similar role
Extensive knowledge of industry-leading security frameworks, e.g. MS SDL, OWASP
Extensive knowledge of security development tools, e.g. Mend, SonarCube
Thorough understanding of potential attack vectors such as XSS, injection, hijacking, social engineering, etc.
Working understanding of Agile Development processes
Experience with managing security in cloud environments
Comfortable in scripting such as terraform or ansible
We prefer candidates currently living in Sweden/the EU for this position.
If you have any questions, please contact Karin Persson.