Application Security Specialist (f/m/d)

A Snapshot of Your DayAs an Application Security Specialist, you will be the bridge between our security and engineering teams, fundamentally strengthening our security posture from within. Your proactive approach will help us build robust, secure software from the ground up, protecting our sensitive data and customer trust. By embedding security directly into our development processes, you will enable our teams to innovate faster and more securely. You will play a crucial role in preventing costly breaches and ensuring the confidentiality, integrity, and availability of our most critical assets. Your day-to-day will be dynamic, blending hands-on security work with strategic collaboration.How You’ll Make An ImpactPerform regular and ad-hoc security assessments, code reviews, and penetration testing on web, mobile, and API applications.Identify, analyze, and track security vulnerabilities, providing actionable remediation mentorship to development teams.Work with product and development teams to incorporate security guidelines into all phases of the Secure Development Lifecycle (SDLC).Develop and integrate automated security testing tools (SAST, DAST) into the CI/CD pipeline.Explore and address security incidents linked to applications within the incident response procedure.Participate in developing and enforcing application security policies and procedures. Develop and deliver security awareness and secure coding training for our engineering teams.What You BringA bachelor’s degree in Computer Science, Cybersecurity, or a related field, or equivalent experience.Multiple years of practical experience in application security, penetration testing, or a related position, with a solid grasp of typical vulnerabilities (such as OWASP Top 10) and mitigation strategies.Proficiency in programming languages such as Python, Java, and Node.js, enabling effective code review and tool development.Proficient knowledge of secure coding principles and familiarity with security assessment tools such as Burp Suite and OWASP ZAP.Preferred certifications: Certified Secure Software Lifecycle Professional (CSSLP), Certified Ethical Hacker (CEH), or Offensive Security Certified Professional (OSCP).Strong analytical and problem-solving skills with a proactive approach to complex technical challenges. Excellent communication skills for both technical and non-technical audiences, with full professional proficiency in English.About the Team The Digital Products & Solutions organization is responsible for developing software solutions for both internal and external customers. These solutions include Edge Computing and applications, On-site sensor technology integration, Cloud-based platforms and cloud-based software solutions and applications.The solutions, applications, and platforms we provide allow data acquired to be used to improve the operation and maintenance of power plants and industrial facilities of all sizes this includes the development of digital twins, analytics platforms and agents, artificial intelligent and machine learning applications and algorithms.Who is Siemens Energy? At Siemens Energy, we are more than just an energy technology company. With ~100.00 dedicated employees in more than 90 countries, we develop the energy systems of the future, ensuring that the growing energy demand of the global community is met reliably and sustainably. The technologies created in our research departments and factories drive the energy transition and provide the base for one sixth of the world's electricity generation.Our global team is committed to making sustainable, reliable, and affordable energy a reality by pushing the boundaries of what is possible. We uphold a 150-year legacy of innovation that encourages our search for people who will support our focus on decarbonization, new technologies, and energy transformation.Find out how you can make a difference at Siemens Energy: https://www.siemens-energy.com/employeevideo Our Commitment to Diversity Lucky for us, we are not all the same. Through diversity we generate power. We run on inclusion and our combined creative energy is fueled by over 130 nationalities. Siemens Energy celebrates character – no matter what ethnic background, gender, age, religion, identity, or disability. We energize society, all of society, and we do not discriminate based on our differences.Rewards/BenefitsIn addition to an attractive remuneration package in line with the market, you can expect an attractive employer-financed company pension schemeWe also offer the opportunity to become a Siemens Energy shareholderWe offer our employees the opportunity to work flexibly and remotely, and our inspiring offices provide space for collaboration and creativityThe professional and personal development of our employees is very important to us. We provide them with the opportunities to learn and develop in a self-determined way, various attractive programmes and learning materials are available for this purposeIn relation to the "compatibility of family and work", we have a wide range of offers, e.g. flexible working time models, childcare places at many locations, the possibility of trial part-time work or even a sabbaticalWe value equal opportunities and welcome applications from people with disabilitieshttps://jobs.siemens-energy.com/jobs