Application Security Lead - Trust and Security

permanent
Fully Remote

Open to all applicants globally!

👨🏻‍🏫 Team Information Security

👥 Employees 200+

🧭 Time zone CET +/-4h

🕒 Working hours Flexible 40 hours/week

💼 Job Full-time

✈️ Business trips No

About the team you are going to join

BRYTER is industry leading because we listen to our customers and provide best-in-class service. Our collaborative and pragmatic security capability is a natural by-product of the service that the Information Security Team provides to our colleagues and, thereby, our customers. We do this by understanding the needs, objectives and challenges of our colleagues and helping them however we can; whilst keeping risks to an acceptable level.

The Information Security Team covers GRC, Security Engineering and Security Operations and we partner very closely with the Information Technology team. Application Security is part of Security Engineering, alongside Cloud Security and Security Architecture.

We're a cloud-native hyper-scaleup and that brings with it all the challenges and excitement a security professional can wish for. We're on a mission to build a modern forward thinking security function that will support and enable BRYTER as it continues to take the no-code world by storm!

What you will do

As our Application Security Lead you’ll be responsible for helping us to better secure our product and ensuring our security posture is as industry leading as our product itself.

Working closely with the product and customer teams, you’ll act as an AppSec multiplier and empower them through your security expertise and guidance. You will be part of a highly collaborative team, and work directly with engineers on enabling them to keep our customers’ data safe.

This is a really exciting time to join us and an opportunity for you to shape and own AppSec at BRYTER. You will:

📝 Plan, own, and implement a measurable strategy and roadmap for application security maturity.

🌴 Foster an engaged and high-performing team by coaching individuals towards self-leadership and support every team members' professional growth.

🥷🏾 Use your own tech experience and expertise, and work with your team, to co-create engineering excellence together.

👥 Work closely with the product teams to foster a culture of security excellence and to embed security activities throughout the SDLC.

👩‍🏫 Educate and support product teams using secure development training and by establishing a secure development community.

🔐 Establish a security baseline and ensure we continue to use approved services and secure-by-default designs.

🛠 Proactively improve threat coverage and incorporate automated verification of all critical milestones.

✍️ Participate in security issue and defect management processes to provide pragmatic guidance and maintaining oversight.

Experience

What we are looking for

  • Demonstrable experience maturing application security (e.g. OWASP SAMM) and in collaboratively implementing application security practices across the SDLC.
  • You must be able to build rapport and trusting relationships with your peers and team members, in an all-remote setting.
  • You must be comfortable working within ambiguity and be able to create clarity for your team.
  • It would be great if you have grown new or developed existing AppSec teams, but don't let that put you off applying.
  • Demonstrable experience of mentoring and influencing product teams in the adoption of secure development practices.
  • A champion of shifting security left (DevSecOps) and empowering other teams.
  • Familiarity with modern development environments e.g. code management and CI/CD systems, Docker and Kubernetes, and microservice architecture.
  • If you also bring the capacity to lead with competence instead of authority; by building relationships and engaging your team; then we'd love to get to know you.

Salary and Perks

Benefit & Perks

🌴 Generous vacation days

🎤 Time off every year for professional learning & growth

📕 Learning expenses

🖥 Personal budget home office equipment

📈 Equity

🕛 Flexible working hours

About BRYTER

BRYTER is the no-code service automation platform that enables business experts to build digital applications. The truly no-code platform gives enterprise teams the tools to build self-service applications to provide faster, more accurate services to their colleagues, without programming.

BRYTER is especially geared to professionals in law, compliance, accounting and finance, who use the software to automate complex, recurring decisions and scenarios.

Global brands from McDonald's and ING, through to professional service firms like Deloitte, PwC, and KPMG, use BRYTER to deliver services digitally. BRYTER is a remote-first company with hubs in New York, London, Frankfurt, and Berlin.

TechCrunch about BRYTER

EU-Startups listed BRYTER as one of ten exceptionally promising German startups to watch in 2021

What's important to us

Watch a webinar of our Chief Product Officer, where he shares some of the practices and rituals that make our remote-first working culture special.

🤝 Trust

We hired you because we trust you. We as founders and we as co-workers.

We trust each other to openly communicate our thoughts, make fast decisions and contribute to an environment that encourages others to do so. Our default-to-yes principle empowers everyone to be a leader and to take ownership.

We trust you because you are awesome, and we want to work with awesome people but also because we believe you have the knowledge and expertise to do great things at BRYTER.

🚀 Growth

We want you to take ownership and agency quite simply. If you sense something which can be improved, we expect you to follow this feeling and just do it. We empower everyone to make decisions.

We support you in your individual journey to grow. Not only by providing challenging work, people around you who you can learn from, but also through a personal conference and training budget.

We strive for collaboration and co-creation. We embrace that when you want to get something done you just reach out to your co-workers and ask for help, advice, feedback, and support.

We believe in the positive impact of cross-functional collaboration where everybody works together in a structured way (that prevents chaos). We call these cross-functional groups our Units.

We leverage this by working together in a Network Organization that is connecting competence (not a hierarchy of authority) and where information flows fluidly throughout the organization.

👩🏻‍🤝‍👨🏽 Collaboration

We are team players and we believe in the power of cross-functional units. We make ownership and processes explicit in order to improve continuously. We have practices and rituals in place that help us reflect and improve continuously.

🔎 Customer-centric

We are here to solve customer problems. We strive to be a human centered organization and see our customers as humans and partners. We help them to do their job better and help them to scale their services by using our product.

In everything we do we maintain clear sight of the customer. We work based on small customer feedback loops and take end-to-end ownership: customer problem - solution - impact (- reflection - learning). This tailored approach allows us to continue being a successful company.

This enables us to respond fast and deliver new customer value frequently.

Curious? Please apply

Multiple studies have found that women/non-binary people on average seek to match a high percentage of a role's requirements before applying.

We encourage everyone to apply, even if they feel they might not fulfill all listed requirements fully. We'd like you to give us a chance to evaluate your skills and experience. We're curious to hear from you and learn what you believe you'd bring to the role and the team.

For people living with disabilities, chronic illnesses, or neurodiversity, adjustments, and support can make a decisive difference in the interviewing process. Please let us know if you need any accommodations (specific tools, more time, additional breaks, etc.) and feel comfortable disclosing this, and we'll do our best to meet them.

About BRYTER

BRYTER is the no-code service automation platform that enables business experts to build digital applications.

BRYTER is the no-code service automation platform that enables business experts to build digital applications.

View all devops and sysadmin jobs

Power Search

Find the jobs that don't get advertised

We've built a tool to help you discover all of the remote jobs that never get advertised.

Discover Power Search

Remote Jobs Weekly

Just the remote jobs you want sent straight to your inbox weekly.