Application Security Engineer

Are you thrilled about DevOps and security? Then we have a fantastic opportunity for you at Danske Bank.

The Application Security team under SRC (Security, Resilience, and Controls) supports the organization in developing secure software by providing requirements, guidance, and tooling. We are looking for a security engineer with an interest in DevSecOps and application security and the skills to match.

Our mission is to support our internal developer community with tools and processes that will help them develop secure software by integrating security into their CI/CD pipelines.

Development teams move fast, and automation is a key factor in allowing the security team to keep up. We want to enable security at the speed of DevOps – more security, less paperwork.

"We celebrate multiple approaches and points of view. We believe diversity drives innovation."

You will:

In this role, you will contribute to the development and maintenance of secure development tools and practices. Your main focus will be the design and implementation of automated security controls embedded in CI/CD pipelines.

You will also contribute to:

  • Developing automation of application security controls
  • Automating and transforming time-consuming and routine-based security processes and approvals
  • Working to enable and promote DevSecOps processes
  • Building resilient, reliable, and highly available security services to support our development teams.

About you:

  • 3-5 years of solid experience with C#/.NET development, REST APIs, microservices, and SQL
  • Knowledge of scripting in Bash, PowerShell, or Python
  • Experience with DevOps tools and processes, build automation, and orchestration tools. Specifically, knowledge of CI tools like GitHub (Actions) and Azure DevOps would be considered as a bonus
  • Knowledge of Application Security, DevSecOps, and code-scanning tools SAST, DAST, SCA, and secret scanning tools would be considered as a bonus
  • Experience with the management of open source dependencies would be considered as a bonus
  • Experience with the remediation of vulnerabilities would be considered as a bonus
  • Knowledge of container technology such as Docker and Kubernetes. Ideally, you should also have knowledge of OpenShift would be beneficial
  • Relevant certifications within security or DevSecOps, such as CISSP, CSSLP, DevSecOps Professional/Expert, etc. would be considered as a bonus as well
  • Advanced English skills

We offer:

Monthly salary range from 3440 EUR to 5160 EUR gross (based on your competencies relevant for the job).

Additionally, each Danske Bank employee receives employee benefits package which includes:
    • Growth opportunities: professional & supportive team, e-learnings, numerous development programs; (incl. professional certificates); 100+ professions for internal mobility opportunities.
    • Health & Well-being: a diverse, inclusive, work & life balance work environment; additional health insurance; mental well-being practices; partial psychologist counselling compensation; silence and sleep zones at the office; game rooms.
    • Hybrid working conditions: home office budget (after the probation period); modern Danske Campus workplace developed with anthropologist for the best employee experience.
    • Additional days of leave: for rest, health, volunteering, exams in higher education institutions, and other important activities. Moreover, for seniority with Danske Bank.
    • Monetary compensation package: accidents & critical diseases insurance; financial support in case of unfortunate events, travel insurance; IIIrd Pillar Pension Fund contribution.

Additional days of vacation

Additional health insurance package

100+ partners' offers & discounts

Third pillar pension fund

See all the benefits HERE.

Apply via:

Send your CV

If you are interested, please send your CV in English no later than 01.08.2024. Confidentiality guaranteed.

Your title in job contract will be IT Security Engineer.

If you have any questions about the job, please reach out to Jahanzeb Farooq, Head of Application Security, at phone (+45) 20 80 09 41 or Martin Brinch Sørensen, Chief Security Engineer, at email [email protected].
Jahanzeb Farooq and Martin Brinch Sørensen
Phone number