Senior Software Security Engineer - - 17417

Obecné informace

Pozice

Senior Software Security Engineer

Pracovní poměr

Plný pracovní úvazek

Město

Sofie

Země

Bulharsko

Oddělení

Business Delivery Solutions

Tým

Cyber

Oblast zájmu

Cyber

Způsob práce

Hybridní model

Popis a požadavky

Who we are looking for

We’re on the hunt for a Software Security Engineer who eats vulnerabilities for breakfast and thinks like an attacker but protects like a fortress. ?💥

If your happy place is somewhere between a secure SDLC, a clean Jira backlog, and a well-configured scanner – keep reading.

You’ll join our security team to proactively find, assess, and eliminate threats across our applications, services, and infrastructure. You’ll work hand in hand with developers, architects, and DevOps to shift security left and make our products and platforms rock-solid from the inside out.

Your future role

🔍 Security Assessments & Monitoring

Run regular vulnerability scans, penetration tests, and risk assessments.

Analyze findings, weed out false positives, and monitor SAST tools to catch issues in the source code early.

Keep an eye on security logs, alerts, and dashboards to detect and squash threats in real-time.

📋 Risk & Backlog Management

Create and manage Jira tickets for findings, exceptions, and risks – and make sure they get resolved.

Report regularly on our security and compliance posture across products and platforms.

🔐 Secure SDLC & DevSecOps

Support the rollout of SDOL processes (exception handling, compliance, documentation).

Integrate security in CI/CD pipelines – from SAST and DAST to dependency scanning and beyond.

📚 Documentation & Governance

Develop and maintain policies, standards, and procedures aligned with frameworks like ISO 27001, SOC 2, HIPAA, GDPR.

Document security concepts, architectures, exception flows, and tool configurations.

⚙️ Tools, Audits & Collaboration

Configure and optimize vulnerability scanners and security tools.

Facilitate threat modeling sessions (LeanIX, Signavio) and risk assessment workshops.

Support internal and external security audits and certification processes.

What we offer

What we offer

At Deloitte, we hire potential. We know that great people make a great organization. We value our people and offer employees a broad range of opportunities.

Flexible and hybrid work model.

Competitive salary and benefits package.

Unlimited access to worldwide esteemed digital learning platforms as per individual needs and curiosity, in addition to classroom trainings.

Personal development and constant growth.

Career pathway and opportunity to constantly grow.

Dynamic and international work environment and team spirit.

Complete Private Health/Travel Insurance.

Employee assistance program, available to you and your immediate family members 24 hours a day, 7 days a week, 365 days a year, covering legal, financial and mental health advisory services.

Extensive experience gained from working across multiple Deloitte CE South Offices.

About Deloitte

Deloitte is a multinational professional services network with offices in over 150 countries and territories around the world. It is one of the Big Four accounting firms and the largest professional. The services Deloitte offers audit, tax, legal, consulting, financial advisory, risk advisory, business processes as well as technology services. Worldwide, Deloitte serves four out of five Fortune Global 500 companies through a globally connected network of member firms in more than 150 countries and territories, with over 330,000 professionals. The organization is recognized among "World’s Best Workplaces™" by Great Place to Work® and Fortune and among a "World’s Most Attractive Employers", by Universum, according to 2020 surveys.

Deloitte Albania. A career built around you.

In Albania, the services are provided or supported by Deloitte Albania sh.p.k, Audit sh.p.k and Deloitte legal sh.p.k. With more than 400 professionals, Deloitte in Albania is providing services in audit, tax, legal, consulting, financial advisory, risk advisory, business processes and technology services and other related services.