Oferta pracy

Application Security Specialist



Powstańców Śląskich 95



Technologies we use


  • Java

  • C#

  • C++

Your responsibilities

Position Description

We are looking for an Application Security Specialist to join us in a newly created role to support QIAGEN's application security strategy. The candidate will play a key role in identifying, designing and implementing consistent Secure Software Development Lifecycle practices for all QIGEN technology projects.

You will be working closely with our Product Security Manager, Solution and Security Architects as well as DevOps teams to ensure consistent and continuously improving QIAGEN secure software development lifecycle for all QIAGEN technology products to assure that application security vulnerabilities are identified, detected and mitigated as early as possible. In this hands-on role, you will be subject matter expert on application security (including but not limited to Web application development). Moreover, you are a passionate and talented application security engineer with very deep understanding of OWASP, CWE 25, Data Protection, Access Management, Software Vulnerabilities and best software design and threat modelling practices who can work in a dynamic environment.

Duties and Responsibilities:

* Help to define consistent Secure Software Development Lifecycle practices for all QIAGEN technology projects throughout the planning and delivery cycles that assure that application security risks are mitigated to an appropriate level.

* Ensure end-to-end security of QIAGEN products by hands-on testing, hypothesizing threats, helping development teams to remediate risks upfront.

* Improve secure coding practices, application security requirements, automation, training, and metrics

* Integrate threat modeling practices into the Software Development Lifecycle

* Help build secure products and standards around emerging technologies and using existing standards and security practices

* Collaborate with product and solution teams to achieve Cybersecurity software security program objectives

* Develop and optimize processes to improve software development efficiency in the consumption of security development practices

* Maintain active understanding of industry practices for secure software development

Our requirements

  • Hands on experience with Software Development e.g. Java / C# / C++

  • Deep understanding of OWASP Top 10 and CWE 25; with proven track record and experience in implementing and integrating remediation strategies

  • Excellent understanding of web applications, web servers, layer 7 application technologies, frameworks and protocols with respect to application development and deployment

  • Well versed in application design, penetration testing, application risk assessment and risk categorization

  • Well versed (experience preferred) with driving and implementing secure development practices in to SDLC (SSDLC); ability to successfully integrate security into a developers world

  • Success in implementing effective Secure SDLC frameworks across a large corporation.

  • Familiar with waterfall and agile development processes and experienced in integrating secure development practices into both models.

  • Familiar with code management system (e.g.: Bitbucket), CI/CD system (e.g.: Jenkins), Docker, Kubernetes, microservice architecture, OAuth 2.0, OpenID Connect.

  • Deep knowledge and experience in implementing and using SAST, DAST, IAST, SCA and fuzz testing tools

  • Fluent written and spoken English

What we offer

At the heart of QIAGEN are our people who drive our success. We act with passion, always challenging the status quo to drive innovation and continuous improvement. We inspire with our leadership and make an impact with our actions. We create a collaborative, safe and engaging workplace which forms the basis for high performing individuals and teams. We drive accountability and entrepreneurial decision-making and want you to excel your growth and shape the future of QIAGEN.

We offer:

- Possibility to develop in an international company

- Training and development programs

- Private medical care

- Group Life Insurance

- Multisport card

- Flexible benefits platform

- Language classes

- Pension Scheme (PPE) after 12 months

- Childcare subsidy

- Happy Monday :)

- Friendly atmosphere

- Casual dress code

- Attractive location (Sky Tower)

QIAGEN is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, or disability.

  • Benefits

  • private medical care

  • sharing the costs of foreign language classes

  • sharing the costs of professional training & courses

  • life insurance

  • integration events

  • retirement pension plan

  • no dress code

  • coffee / tea

  • drinks

  • extra social benefits

  • employee referral program

  • charity initiatives


At the heart of QIAGEN’s business is a vision to make improvements in life possible.

We are on an exciting mission to make a real difference in science and healthcare. We are still the entrepreneurial company we started out as and have today achieved a size where we can bring our full power to many initiatives and to our presence across the globe.

Our most valuable asset are our employees – more than 5000 in over 35 locations around the world. Our ambition is to ensure we have outstanding and passionate people working in the best teams and we are constantly looking for new talent to join us.

There are few players who have shaped the world of modern science and healthcare as much as QIAGEN, and we have only just started.

If you are looking to advance your career, are seeking new challenges and opportunities, enjoy working in dynamic and international, diverse teams and want to make a real impact on people’s lives, then QIAGEN is where you need to be.

Join us. At QIAGEN, you make a difference every da

Scroll to the company’s profile