Take your career to the next level with Amaris Consulting as a CISOC Application Security Engineer . Become part of an international team, thrive in a global group with €800M turnover and 1,000+ clients worldwide , and an agile environment by planning the kickoff and follow up on projects. Join Amaris Consulting, where you can develop your potential and make a difference within the company.

✍️ WHAT WOULD YOU NEED?

• Around 3 years of experience
• Strong background in DevSecOps and application security
• Hands-on experience implementing and managing SAST tools (Static Application Security Testing)
• Solid understanding of secure coding practices and software development lifecycles
• Experience working with CI/CD pipelines , ideally Jenkins
• Knowledge of container orchestration platforms such as Kubernetes and/or OpenShift
• Proficiency in scripting languages such as Python , PowerShell , or Bash
• Ability to collaborate closely with IT teams , developers, and security stakeholders
• Strong analytical skills to research, classify, and analyze security events and vulnerabilities
• Good communication skills to train, guide, and influence development teams and present to management
• A structured, documentation-oriented mindset, comfortable working with SOPs and defined processes
• Professional proficiency in English (spoken and written); additional languages are a plus

WHAT WILL YOU DO?

• Implement and manage SAST tools across the organization, ensuring effective integration into development workflows
• Conduct security assessments of applications using SAST tools and support teams in remediation
• Train and guide development teams on SAST usage and secure coding best practices
• Contribute to the development and enforcement of application security policies, standards, and procedures
• Help to define and improve vulnerability management frameworks and working structures
• Research, classify, and analyze security events and vulnerabilities detected by tools and processes
• Act as a point of contact for managing and delivering various vulnerability and remediation reports
• Collaborate closely with IT and project stakeholders to deliver and implement technology solutions that improve productivity, processes, and security
• Work within the BI / reporting framework , following defined processes and ensuring compliant documentation according to SOPs and working instructions
• Present vulnerability management status and updates to risk & information security teams, technology SMEs, and management