Safe Development:
At the moment, threat actors frequently target applications and bespoke solutions.  Security needs to be considered at every stage of the development of a contemporary application.  Our engagements range from longer assignments where we create code responsibly as integrated team members to security courses connected to AppSec that teach businesses DevSecOps and secure coding.  We are a cyber technology business that uses its own proprietary software and services for assignments and with clients.
The Position:
You will have the chance to collaborate with a range of clients and their development teams at Truesec, offering technological solutions that will help them enhance their security according to their requirements and present situation.  Assessing planned or current systems for security flaws, doing code reviews to find any problems, and assisting customers in creating more secure development procedures are some examples of your duties.  Giving clients risk advice and education will be a major component of your work.
Additionally, you will get the opportunity to participate in threat modeling exercises, which entail system analysis to detect possible security risks and devise countermeasures.  To assist customers in strengthening their security posture and making sure they are knowledgeable about the most recent methods and best practices, you may also take part in workshops and training sessions.
We offer continual training and assistance, including chances for on-the-job learning and participation at industry conferences, to make sure you are prepared to tackle these obstacles.  You will have the technical know-how and resources required to assist our clients in creating more robust and secure systems, whether you are working alone or with a team.
Your Possible History:
The ideal applicant for us may have a wide range of experiences because application security is a vast field that requires a diversity of abilities and knowledge.  As an application security engineer, you could have worked in secure software development, code review, threat modeling, or vulnerability assessment.  You probably know a lot about industry-standard procedures and recognize how important it is to include security into the software development life cycle.
However, if security is a major concern for you as a developer, you may have expertise using safe coding techniques like cryptography, access control, and input validation.  You may also be familiar with other security solutions, such as web application firewalls.
If you work as a penetration tester, you most likely have a knack for identifying system flaws and using them to demonstrate how they affect company operations.  Additionally, vulnerabilities and vulnerability studies may be of interest to you.
Lastly, you may have expertise creating and putting into practice security policies, processes, and controls that facilitate the creation of safe software if you are an information security professional with an interest in the secure software development life cycle (SSDLC).
To put it briefly, we think that you may have prior knowledge with secure coding techniques and DevSecOps.
. Design and architecture of software.
. Proficiency in one or more programming languages, ideally in Java, C#, C/C++, Python, JavaScript, or Go.
We will consider it a benefit if you have experience in any of the following areas:
. Authorization, authentication, and cryptography.
. OpenID Connect/JWT/OAuth 2.
. Kubernetes, Docker, and distributed systems.
. GCP, Azure, or AWS.
. Threat modeling and code security evaluations.
. testing for penetration.
. SAST/DAST instruments.
. management of vulnerabilities.
Don't be afraid to apply; application security is a vast field, and we know that you might fit right in even if you have a different experience than those listed.
Become a Part of Our Mission  The Path to a Secure Digital Future
This is the place for you if you genuinely want to change things and make the world a little bit safer.  Instead of reading about cybercrime in the news, Truesec will put you at the forefront of the battle against it.  This is your opportunity to learn from some of the top experts in their area and take part in an exciting adventure with a top cybersecurity organization. We are seeking applicants who are either Swedish residents or have a valid Swedish work visa because our jobs require managing sensitive information.