Application Security Engineer

Want to know how a leading workplace experience and facility management company is powered by technology?

At ISS Tech Team, we create smarter workplace experiences through technology. Our Global Technology Solutions team builds digital solutions, from sensors and IoT devices to data, analytics and AI-driven capabilities, that support Cleaning, Workplace, Food, and Technical Services.  With tech hubs in Copenhagen, Warsaw, and Porto, and teams collaborating across more than 30 countries, our ISS Tech team develops digital solutions that have a real impact on both our customers and our people.

Location: Porto, Portugal

Work Model: Hybrid

Job Role as Application Security Engineer
As a member of ISS Development Security team, you'll play a crucial role in driving improvements in overall security of ISS in-house applications, both internal and customer facing. You will have a chance to not only work with cutting-edge dev, cloud and security technologies, but also collaborate with technology experts in a growing, global IT organization

What you’ll do:

• Embed security tools and DevSecOps practices in CI/CD pipelines and cloud environments.
• Evaluate, implement and operate cyber security tools, act on their findings in close collaboration with engineering teams.
• Run internal and facilitate external penetration tests of ISS applications.
• Improve software development lifecycle processes across the company with “shift-left” mindset– making sure cybersecurity is not a blocker, but an enabler for high quality software.
• Educate and consult engineering teams on application security topics, run Application Security Champions program.
• Collaborate with other IT functions to enhance overall posture of ISS applications and related infrastructure.

Who you’ll work with:

• Global engineering teams: Security, Dev, DevOps, Cloud Ops, Big Data & AI, IoT, architecture and more
• Product Owners, Risk and Compliance

Qualifications for the Job:

• Practical experience with application security, programming, DevOps or automation.
• Strong interest in security, knowledge of core concepts, vulnerability types, ways to exploit
  and mitigate them.
• Solid understanding of modern technologies, especially public cloud services and development tools. AI, Kubernetes and Openshift experience considered a plus.
• Effective communication skills in an international environment.
• Ability to explain complex topics (like vulnerabilities) in a simple, understandable way.
• Can-do attitude, drive to innovate and find best ways of implementing security improvements.

What ISS Offers You:

• Permanent contract.
• Competitive package, including private Health Insurance.
• 22 days of annual leave per year +3 company leave days.
• Flexible working hours & hybrid work model.
• Continues training (Technical and behavioural development).
• Modern, well-equipped office in the heart the city of Porto.
• Free parking.
• ISS Tech Communities (Sports, Gaming & Band).
• Free access to company Gym.
• Snacks and drinks at the office.

Why ISS

At ISS, we are more than just a service provider of cleaning, food, workplace and technical services, we are a partner in our customers’ success. By creating exceptional service moments and transforming workplaces into spaces where employees feel valued, engaged and productive, we enhance productivity and help our customers to attract talent and grow their businesses. This begins with our own people through training, career development, and a supportive culture – empowering them to deliver outstanding service. We know that when our people thrive, they create spaces where our customers’ employees and businesses thrive too.

ISS is a Place to Be You.

Be who you are. Become what you want. Be part of something bigger.

Become more. Become ISS.

ISS seeks to BE a place of belonging and CREATE places where every person is welcomed, embraced, and valued for exactly who they are. Places where people feel safe, respected, represented, and supported as their authentic selves.

#LI-Hybrid