Security Software Developer

About the job:

We are looking for passionate engineers to join our R&D department to contribute to Enterprise products which are used in mission critical applications.

We are looking for a Security Software Developer with strong experience in secure coding practices, vulnerability analysis, and remediation. The ideal candidate will be responsible for designing and implementing secure software solutions, analyzing security reports and scans, and integrating security improvements into existing applications and systems.

Required Skills:

• Design, develop, and implement secure software solutions across applications and systems.
• Analyze vulnerability reports, security scans, and penetration test results to identify risks.
• Recommend and implement remediation steps to address identified vulnerabilities.
• Integrate security tools and controls into the software development lifecycle (SDLC).
• Collaborate with cross-functional teams (DevOps, QA, IT, Security) to ensure secure design and coding standards.
• Conduct code reviews with a focus on security vulnerabilities and best practices.

Good to Have:

• Experience with threat modeling and risk assessment.
• Knowledge of container and microservices security (Docker, Kubernetes).
• Certifications such as CEH, OSCP, CSSLP, or GIAC are a plus.

Key Responsibilities:

• Automate security testing and integrate with CI/CD pipelines.
• Stay updated with the latest security threats, tools, and best practices.
• Experience analyzing security reports/scans (e.g., Nessus, Burp Suite, Qualys, Checkmarx, Veracode).
• Hands-on experience with security testing tools (SAST, DAST, SCA).
• Familiarity with CI/CD pipelines and integrating security testing.
• Knowledge of cloud security concepts (AWS, Azure, or GCP).
• Strong problem-solving and analytical skills.

Qualifications & Experience

• Bachelors or Masters degree in Computer Science, Information Security, or related field.
• 2-4 years of experience in software development with a focus on application security.
• Proficiency in at least one programming language (e.g., Java skills, Angular, JavaScript). Excellent analytical and problem-solving skills.
• Strong understanding of secure coding principles (OWASP Top 10, SANS CWE Top 25)
• Strong communication and interpersonal skills.
• Ability to work independently and as part of a team.
• A passion for learning and continuous improvement.

About

Escriba AG began its journey in 1998 and has become the leading German provider of No/Low-Code technology for the digitization of data and document intensive processes for the HR and Legal environment. We combine the strength of digital workflows, case management and object-oriented document generation to compete with ServiceNow, SAP HANA and Salesforce in the EU region look forward to expanding globally. Were passionate about software, passionate about our people, and passionate about using technology to create truly world-class products.

The fact is leading brands in Germany and Europe

We