Application Security Specialist
Decskill, founded in 2014 as an IT Consulting Company, places paramount importance on its greatest asset: its people. Our main mission is to deliver value through knowledge and talent, and we achieve this by fostering a culture of excellence and investing in the development and
- being of our people. With over 600 dedicated professionals and offices in Lisbon, Porto, Madrid, and Luxembourg, Decskill operates across three core areas:
Decskill Talent: We believe that our people are key to our success. Through Decskill Talent, we empower our team to embrace the digital transformation challenges of our clients. We collaborate with clients to drive innovation, ensuring project success and business growth.
Decskill Boost: Equipping our team with the latest tools and methodologies, we optimize Time-to-Market and deliver innovative solutions exceeding client expectations.
Decskill Connect: Our team collaborates closely with clients to implement and manage IT infrastructures that generate
- term value.
At Decskill, we believe that by nurturing and empowering our people to confront the challenges of digital transformation, we create value not only for our clients but also for our entire ecosystem, fostering a digital community dedicated to growth and progress.
We are looking for an Application Security Specialist for a hybrid project based in Porto (2x/week).
Requirements:
Knowledge of all kind of application: Business Web application , Mobile application, on preprem/public cloud hosting.
Familiarity with several kinds of languages (JAVA, JS, PHP, C#. . . ).
Knowledge of Jenkins, Bitbucket, Artifactory, Fortify, Nexus
IQ, API REST.
Application Security: Experience with SCA and SAST.
Python scripting experience.
English good level is mandatory (min B2).
Main Tasks:
Mainly ensure that developers’ Dev
Sec
Ops activities related to SAST and SCA are done according to the security policies.
Develop tooling to automate as much as possible the Dev
Sec
Ops effectiveness controls.
Check how developers work with Fortify and Nexus IQ: alignment with development’s lifecycle, coverage of the scans.
Check if findings are properly treated: vulnerabilities well remediated, no wrong false positive classification.
Identify global gaps and propose remediation strategy.
Contribute to security frameworks improvements.
Challenge the developers, support the remediation and acculturate them with Fortify, Nexus IQ and secure coding best practices.
If you’re interested in this job please send your CV to carolina. novais@decskill.com with reference CN/ASE.
Decskill is committed to equality and
- discrimination with all our talents. We recruit and promote talent, based on diversity and inclusion, regardless of age, gender, ethnicity, race, nationality or any other form of discrimination incompatible with the dignity of the human being.
- Informações detalhadas sobre a oferta de emprego
Empresa: Decskill Localização: Lisboa
Porto Salvo, Lisboa, PortugalPublicado: 14. 7. 2025
Vaga de emprego atual
Seja o primeiro a candidar-se à vaga de emprego oferecida!