As a global leader in facilities services we connect people and places to make the world work better. Whether directly or indirectly, you'll play a vital role in supporting our placemakers in delivering exceptional workplace experiences for our customers. Together, we make space for people and businesses to thrive.
At ISS Tech Team we are investing in innovative and integrated technological solutions for the facility management industry with a tech team headquarted in Copenhagen, Warsaw and Porto. Our Porto hub is the first space dedicated specifically to software development and acts as a powerhouse where our employees test and implement products for over 40,000 clients and 350,000 placemakers around the world.
Location: Porto, Portugal
Work Model: Hybrid
Your Role as the Application Security Engineer:
As a member of ISS Development Security team, you'll play a crucial role in driving improvements in overall security of ISS in-house applications, both internal and customer facing. You will have a chance to not only work with cutting-edge dev, cloud and security technologies, but also collaborate with technology experts in a growing, global IT organization
What you'll do:
* Embed security tools and DevSecOps practices in CI/CD pipelines and cloud environments.
* Evaluate, implement and operate cyber security tools, act on their findings in close collaboration with engineering teams.
* Run internal and facilitate external penetration tests of ISS applications.
* Improve software development lifecycle processes across the company with "shift-left" mindset– making sure cybersecurity is not a blocker, but an enabler for high quality software.
* Educate and consult engineering teams on application security topics, run Application Security Champions program.
* Collaborate with other IT functions to enhance overall posture of ISS applications and related infrastructure.
Who you'll work with:
* Global engineering teams: Security, Dev, DevOps, Cloud Ops, Big Data & AI, IoT, architecture and more
* Product Owners, Risk and Compliance
Qualifications for the Job:
* Practical experience with application security, programming, DevOps or automation.
* Strong interest in security, knowledge of core concepts, vulnerability types, ways to exploit
and mitigate them.
* Solid understanding of modern technologies, especially public cloud services and development tools. AI, Kubernetes and Openshift experience considered a plus.
* Effective communication skills in an international environment.
* Ability to explain complex topics (like vulnerabilities) in a simple, understandable way.
* Can-do attitude, drive to innovate and find best ways of implementing security improvements.
What we offer:
* 22 days of annual leave per year +3 company leave days.
* Flexible working hours & hybrid work model.
* Permanent contract.
* Health Insurance (employee).
* Modern, well-equipped office in the heart the city of Porto.
* Free parking.
* ISS Tech Communities (Sports, Gaming, Band, etc).
* Free access to company Gym.
* Snacks and drinks at the office.
Why ISS
At ISS, we are more than just a service provider of cleaning, food, workplace and technical services, we are a partner in our customers' success. By creating exceptional service moments and transforming workplaces into spaces where employees feel valued, engaged and productive, we enhance productivity and help our customers to attract talent and grow their businesses. This begins with our own people through training, career development, and a supportive culture – empowering them to deliver outstanding service. We know that when our people thrive, they create spaces where our customers' employees and businesses thrive too.
ISS is a Place to Be You.
Be who you are. Become what you want. Be part of something bigger.
Become more. Become ISS.
ISS seeks to BE a place of belonging and CREATE places where every person is welcomed, embraced, and valued for exactly who they are. Places where people feel safe, respected, represented, and supported as their authentic selves.
#LI-Hybrid