Blog

Secure Coding Expert (Ethical Hacking)

Posted on: 10 May 2022

Apply with CV

Job intro


40 hours per week -

02-05-2022 till 31-12-2022 -

Possible extension: Yes


Organization


ABN AMRO Amstelveen


Function


Assignment context and description of activities


The Development Services department is the knowledge center within ABN AMRO for everything concerning software development. It's goal is to continuously improve the quality of the software development process and it's deliverables. To accomplish that mission, we harvest best practices from the development community and translate these into standards and guidelines. Common for all technologies is the need for strong security. The Secure Coding (SECO) team takes care of all matters concerning the security of software. A Domain Expert for SECO helps development teams in the organisation with improving the quality of security of their products.


With the following results (SMART)


Results of the Domain Expert for SECO:


- Secure coding standards and guidelines

- Secure software development tools and processes

- Coaching ABN AMRO staff on secure development practices

- Fuelling the Security Triangle community


Requirements


Relevant knowledge, skills, competences & desired education level


As a Domain Expert for SECO, the candidate must be an expert in software development security (methodologies) and associated tools. Must have technical experience:


Vulnerabilities:


* OWASP

* SANS


Threat modelling: STRIDE


Ethical Hacking:


* CTF

* Hack-the-box


Development:


* Proficient in at least on major programming language (Java or Javascript or Python or C# or Swift)


Public Cloud technology:


* Azure

* Azure DevOps


Versioning tools:


* Git

* Bitbucket


Build tools:


* Maven

* Gradle


QA tools:


* SonarQube

* Fortify


Package tools: Nexus (IQ)


Workflow tools:


* JIRA

* Jenkins / Azure DevOps


Methodologies:


* The Agile way of working

* SCRUM


Must have personal skills:


* Fluent English (Dutch not required)

* Coaching & Feedback

* Training

* Convincing

* Enterprise awareness

* Intercultural awareness


Additional information


The profile is that of an ethical hacker.


Information

Info Look4Contract +31(0)20-3337629

Apply with CV