Application Security Specialist
BARCELONA, B, ES, 08005
At Allianz Technology, our Information Security Operations team is the core driver behind our cybersecurity strategy, continuously developing global solutions to safeguard Allianz against evolving threats. As part of this mission, Allianz Vulnerability Management (AVM) plays a critical role in detecting, analyzing, and reporting vulnerabilities across business and technological systems.
We are now looking for a more senior-level Application Security Specialist to join our Web Application Security team. In this role, you will lead large-scale web application security assessments, guide strategic remediation efforts, and provide expert consultancy to stakeholders. You will leverage your advanced expertise in application security to drive technology integration, promote secure SDLC processes, and ensure the protection of Allianz's business applications. This is an exciting opportunity for someone with a deep understanding of application security and a passion for tackling complex challenges.
What you can find at Allianz Technology:
- Work Life - Balance: We offer flexible working hours so you can start your working day according to your needs. In addition, during the summer and every Friday of the year, you have the option of intensive working hours, which will allow you to enjoy more free time for yourself.
- International and Multicultural Environment: We value the diversity and richness that comes from working in an international and multicultural environment. With more than 52 different nationalities represented in our company, we offer our employees the opportunity to collaborate with people from all over the world, enriching the work environment and providing the opportunity to learn and grow in a truly global setting. This diversity allows us to have a broader perspective, foster creativity and innovation, and promote an inclusive work environment where every voice is heard and valued.
- Professional Growth Opportunities: We are committed to the professional development of our employees and provide numerous opportunities for growth within the company. We value internal talent and promote internal advancement, offering training programs, mentoring, and skills development that allow our employees to advance in their careers.
- Compensation and Benefits Package: It includes a company bonus plan, pension, employee stock program, and multiple employee discounts.
What will make you succeed in this position?
- Excellent knowledge of application security and SDLC process
- Excellent knowledge of industry-standard tools, methodologies and standards (OWASP TOP10)
- 3-5 years of hands-on experience with web application security testing
- 3-5 years of hands-on experience with Qualys Web Application Scanning (WAS), Nessus and similar tools
- Broad background in Application Security and Vulnerability Management end-to-end process, including WAFs
- Very good social and communication skills
- Familiarity with risk management process and ISMS frameworks (ISMS 27001)
- Develop internal and/or external documentation, such as detailed procedures, playbooks, and operational metrics reports
- You must possess and demonstrate the ability to work fully independently and solve complex problems or situations based on multiple sources of information, volatile situations, uncertainty and ambiguity.
- Bachelor of Science in either Information Technology or Information Security or comparable education
- Very fluent in English language (business communication)
Your mission in the role will be:
- The Application Security Specialist will be part of the Web Application Security team– Allianz Vulnerability Management global Security Service, responsible for performing web application security assessments, vulnerability assessments, as well as providing consultancy and expert guidance to relevant stakeholders and tracking strategic and tactical remediation efforts.
- Perform large-scale, enterprise vulnerability assessments of web application security via Qualys WAS and similar tools
- Drive architecture and integration of the application assessment technology stack, API integrations with DevSecOps workflows and promote SDLC process.
- Guide organization and IT counterparts in resolution of the common exposures and vulnerabilities, provide expertise in mitigating actions and shielding of the business applications.
- Develop mitigation strategies and provide appropriate advice to solve existing issues and prevent future issues
About Allianz Technology
Allianz Technology is the global IT service provider for Allianz and delivers IT solutions that drive the digitalization of the Group. With more than 12,000 employees located in 51 countries around the globe, Allianz Technology works together with other Allianz entities in pioneering the digitalization of the financial services industry.
We oversee the full digitalization spectrum – from one of the industry’s largest IT infrastructure projects that includes data centers, networking and security, to application platforms that span from workplace services to digital interaction. In short, we deliver full-scale, end-to-end IT solutions for Allianz in the digital age.
D&I statement
Allianz Technology is proud to be an equal opportunity employer encouraging diversity in the working environment. We are interested in your strengths and experience. We welcome all applications from all people regardless of gender identity and/or expression, sexual orientation, ethnicity and cultural background, age, nationality, religion, disability, or philosophy of life.
Join us. Let´s care for tomorrow.
You IT
61263 | Ingeniería informática y tecnológica | Profesional / Senior | Non-Executive | Allianz Technology | Jornada completa | Indefinido