Heads up: this job position has expired. If you were already in process, no worries; it will still proceed as normal.

Software Security Engineer (Java)

Panalpina
Leading Providers of Supply Chain Solutions

Job details

  • Full-time
  • map markerLisbon, PT
  • cardRequires Work Permit
    Requires that you're a citizen or have a valid work permit / visa sponsorship to work in the country in which this position is based.
  • routeIntermediate
  • routeEnglish
    Preferred spoken language

Apply now

Intro

The Panalpina Group is one of the world's leading providers of supply chain solutions, combining its core products of Air Freight, Ocean Freight, and Logistics to deliver globally integrated tailor-made end-to-end solutions. The Panalpina Group operates a global network with some 500 offices in more than 70 countries and employs around 16,000 people worldwide.

We are looking to hire a Software Security Engineer (Java) for our Centre of Excellence (CoE) in Portugal.

Tasks

  • Contribute to the elaboration of IT security software development and testing standards and best practices and ensure they are followed by software development teams
  • Contribute to risk assessment process of the application development
  • Support application design processes from the security perspective, including but not limited to IAM, authentication and authorization aspects
  • Develop software in Java/Javascript/PHP stack following Panalpina’s security coding standards and in accordance with applicable software development methodology and release processes
  • Perform security tests (static and dynamic), internal application audits and remediate application vulnerabilities with relevant tools and processes
  • Integrate security standards into CI/CD toolchain environments
  • Perform code reviews and analysis to ensure security requirements are implemented
  • Remediate web applications penetration testing findings
  • Manages and uses relevant security development and testing tools and processes
  • Collaborates and adds value through participation in peer code reviews, providing comments and suggestions
  • Provides reliable solutions to a variety of problems using sound problem-solving techniques
  • Performs technical root cause analysis and outlines corrective action for given problems
  • Estimate level of effort, evaluate new options of similar technology, offer suggestions to improve processes and provide comments on design aspects
  • Responsible together with the development team members for the development planning, the progress and the quality of the delivery
  • Provide support/guidance/assistance to other developer colleagues
  • Other application security-related tasks
  • Participate in selection of test automation tools
  • Integrate testing steps into CI/CD toolchain environments
  • Conduct manual and automatic front and back-end tests
  • Design, execute and review test cases
  • Perform defect analysis
  • Develop automated unit tests

Main requirements

  • Bachelor’s degree in Information Technology or Information System a must. Master degree preferred
  • Operations and/or supply chain management experience preferred
  • At least 3-5 years of experience in software development with strong knowledge of the Java/PHP/Javascript technologies applied to complex web applications and in the secure web application development and testing
  • Further education in Information Security, such as OSCP, GPEN, CISM, CISSP, CISA or other
  • Experience with the web application security testing tools
  • Familiarity with IT processes in general and agile processes in particular
  • Expertise in software engineering/architecture/development
  • Technical Expertise in

  • Java/PHP/Javascript

  • IBM Informix, IBM DB2

  • Service Oriented Architecture (SOA)

  • REST, web services

  • Mastering in software development methodologies and processes (Scrum, Agile, Kanban, Waterfall) in complex and highly integrated environments

  • Expert understanding of Information Technology and Information Systems in security area

  • Expert understanding of security good practices and tools in software development and testing

  • Understanding of IT trends, related to customer-facing systems & technologies

Nice to have

  • Experience in the areas such as penetration testing, vulnerability scanning, security architecture

Apply now