Security Engineer - Application Security

At Allianz Technology, our Information Security Operations team is the driving force behind our cybersecurity strategy, developing global solutions to protect Allianz from evolving threats. As part of this mission, Allianz Vulnerability Management (AVM) plays a key role in detecting, analyzing, and reporting vulnerabilities across business and technological systems. We’re seeking a passionate Security Engineer for our Web Application Security team to lead web application security assessments, guide stakeholders, and integrate security solutions into DevSecOps workflows, ensuring the protection of Allianz’s business applications.

What you can find at Allianz Technology:

• Work Life - Balance: We offer flexible working hours so you can start your working day according to your needs. In addition, during the summer and every Friday of the year, you have the option of intensive working hours, which will allow you to enjoy more free time for yourself.
• International and Multicultural Environment: We value the diversity and richness that comes from working in an international and multicultural environment. With more than 52 different nationalities represented in our company, we offer our employees the opportunity to collaborate with people from all over the world, enriching the work environment and providing the opportunity to learn and grow in a truly global setting. This diversity allows us to have a broader perspective, foster creativity and innovation, and promote an inclusive work environment where every voice is heard and valued.
• Professional Growth Opportunities: We are committed to the professional development of our employees and provide numerous opportunities for growth within the company. We value internal talent and promote internal advancement, offering training programs, mentoring, and skills development that allow our employees to advance in their careers. 
• Compensation and Benefits Package: It includes a company bonus plan, pension, employee stock program, and multiple employee discounts. 

What will make you succeed in this position?

• Excellent knowledge of application security and SDLC process
• Excellent knowledge of industry-standard tools, methodologies and standards (OWASP TOP10)
• 3-5 years of hands-on experience with web application security testing
• 3-5 years of hands-on experience with Qualys Web Application Scanning (WAS), Nessus and similar tools
• Broad background in Application Security and Vulnerability Management end-to-end process, including WAFs
• Very good social and communication skills
• Familiarity with risk management process and ISMS frameworks (ISMS 27001)
• Develop internal and/or external documentation, such as detailed procedures, playbooks, and operational metrics reports
• You must possess and demonstrate the ability to work fully independently and solve complex problems or situations based on multiple sources of information,  volatile situations, uncertainty and ambiguity.
• Bachelor of Science in either Information Technology or Information Security or comparable education
• Very fluent in English language (business communication)

Your mission in the role will be:

• Perform web application security assessments, vulnerability assessments, as well as providing consultancy and expert guidance to relevant stakeholders and tracking strategic and tactical remediation efforts.
• Perform large-scale, enterprise vulnerability assessments of web application security via Qualys WAS and similar tools
• Drive architecture and integration of the application assessment technology stack, API integrations with DevSecOps workflows and promote SDLC process.
• Guide organization and IT counterparts in resolution of the common exposures and vulnerabilities, provide expertise in mitigating actions and shielding of the business applications.
• Develop mitigation strategies and provide appropriate advice to solve existing issues and prevent future issues

 About Allianz Technology

Allianz Technology is the global IT service provider for Allianz and delivers IT solutions that drive the digitalization of the Group. With more than 12,000 employees located in 51 countries around the globe, Allianz Technology works together with other Allianz entities in pioneering the digitalization of the financial services industry.

We oversee the full digitalization spectrum – from one of the industry’s largest IT infrastructure projects that includes data centers, networking and security, to application platforms that span from workplace services to digital interaction. In short, we deliver full-scale, end-to-end IT solutions for Allianz in the digital age.

D&I statement

Allianz Technology is proud to be an equal opportunity employer encouraging diversity in the working environment. We are interested in your strengths and experience. We welcome all applications from all people regardless of gender identity and/or expression, sexual orientation, ethnicity and cultural background, age, nationality, religion, disability, or philosophy of life.

Join us. Let´s care for tomorrow.

You. IT

61260 | Ingeniería informática y tecnológica | Junior | Non-Executive | Allianz Technology | Jornada completa | Indefinido