SENIOR APPLICATION SECURITY EXPERT (HYBRID)

SENIOR APPLICATION SECURITY EXPERT (HYBRID)

SENIOR APPLICATION SECURITY EXPERT (HYBRID LISBON or PORTO)

Portuguese company hires for hybrid position

? Location: Lisbon or Porto, Portugal

⚠ Candidates must already live in Portugal

? Language Requirements: Fluend English

? Experience Levels: 6+ years of experience

? Setor: Banca

⚠ Instructions: Please send your CVs in English and make sure to include all skills and experience that match the requirements of the opportunity. This will significantly increase your chances of success

Role Overview

We are seeking a Senior Application Security Expert to strengthen our cybersecurity capabilities and support the deployment of global security initiatives. The professional will be part of the Cybersecurity & Digital Fraud team, contributing to the design, implementation, and continuous improvement of the Application Security Strategy across multiple entities and platforms.

This is a
- level position requiring both strategic and operational expertise in IT risk management, vulnerability analysis, and secure application development.

Key Responsibilities

• Act as a core member of the Application Security team, leading the deployment and governance of the Application Security strategy.
• Define and update Application Security rules, requirements, and best practices based on stakeholder feedback and evolving risk scenarios.
• Provide
  - level operational support to global entities regarding organizational design, security processes, and vulnerability analysis (Level 3 support).
• Collaborate with solution providers and internal teams to identify and resolve technical issues affecting application security.
• Lead or contribute to Application Security governance committees, driving alignment and reporting on key initiatives.
• Consolidate metrics and KPIs to assess the overall maturity and effectiveness of application security across the organization.
• Contribute to enterprise security initiatives and support integration with other cybersecurity domains (risk management, resilience, digital fraud prevention).

Required Skills & Experience

• 6+ years of professional experience in IT Security or Cyber Risk Management, with a strong focus on Application Security (App
  Sec).
• Proven experience in:
  • IT Risk and Cybersecurity Management (expert level)
  • Risk Awareness & Mitigation Frameworks (expert level)
  • Vulnerability Management and Offensive Security (practical experience)
  • Software Development, Testing, and Secure Code Review (practical experience)
  • Software Architecture and Design (practical experience)
  • Deep understanding of
    - level security controls, Dev
    Sec
    Ops principles, and secure SDLC methodologies.
  • Strong analytical and problem‑solving skills, with the ability to manage multiple stakeholders and priorities.
  • Excellent communication and documentation abilities.

Language Requirements

• English: Advanced (C1 – mandatory)
• French: Nice to have

Personal Attributes

• Autonomous, detail‑oriented, and proactive.
• Strong sense of responsibility and security ownership.
• Capable of influencing cross‑functional teams and promoting a security‑first culture.
• Committed to continuous improvement and knowledge sharing.

Keywords

• App
  Sec
• IT Risk
• Cybersecurity
• Vulnerability Management
• Secure SDLC
• Risk Awareness
• Software Architecture
• Dev
  Sec
  Ops
• Governance
• Portugal
• Hybrid