Application Security Specialist (relocation to Montenegro)

Libertex is an international financial services group specializing in online trading and investment. It was founded as a brokerage firm in 1997 and has since grown into a diverse group of companies, brokers, dealers, educational and IT-development centers which allows the group to operate globally, target 27 countries and serve clients from 120 countries.

Through its proprietary mobile and online trading platforms, Libertex offers trading in Forex, crypto, stocks, CFDs, futures, funds and indices.

Job Description

The Application Security Specialist provides subject matter expertise for securely designing, developing, maintaining, and retiring IT applications. He/she works closely with other stakeholders to ensure security is handled properly at every stage of the system development lifecycle.The position will be a part of the IT Security Group responsible for security.

Requirements

• Ensuring security is handled as a built-in and permanent part of the system development lifecycle.
• Managing compliance requirements like PCI-DSS, GDPR.
• Training and mentoring developers in secure coding techniques and supporting toolsets to enable them to self-service
• Performing secure code reviews on different variety of programming languages
• Performing application vulnerability assessments, including regular scanning and penetration testing activities.
• Performing PoC and adoption processes for security toolsets like SAST, DAST, and SCA to improve the organization's application security toolchain capabilities.
• Helping WAF management processes to modify WAF policies to virtually patch applications where required.

Required Qualifications

• Strong understanding of application security risks enlisted by OWASP top 10, CWE 25, and similar standard awareness documents
• Knowledge of web and mobile application security. Experience with security tools, including static code analysis and vulnerability scanning.
• Functional understanding in tooling integrations to support Agile, CI/CD, and DevSecOps methodologies.
• Hands-on experience with Software Development. Professional software development and security code review experience with one or more of the following programming languages: Golang, Java, C++, PHP, JavaScript, and HTML.
• Knowledge of software architectural styles and patterns like SOA, server-client, MVC, microservice, modular monolith, and different security design approaches.
• Experience with one or more popular cloud service providers. Software development experience on the cloud-ready applications using supporting toolchains like containers, service-mesh, and container orchestration.
• Experience with agile software development practices and methodologies, preferably on scrum.

Benefits

• Work in a dynamic and fast-paced international company
• Beautiful emerging European destination (Montenegro, Podgorica)
• Low cost of living
• Generous relocation package
• Competitive tax free salary
• Comprehensive medical insurance for all family members
• Annual reimbursement of flight home for employee and family
• 21 working days of annual leave plus 14 days public holidays
• Fun and friendly professional environment
• Use of leading technologies and modern business practices such as Agile
• Excellent training and development opportunities
• Rapidly expanding global footprint