Jobs
>
Aachen

    Senior Application Security Engineer - Aachen, Deutschland - Cerence Inc.

    Cerence Inc.
    Cerence Inc. Aachen, Deutschland

    vor 6 Tagen

    Default job background
    Ganztags
    Beschreibung

    A Moving Experience.

    Job Description

  • Perform design consultation, architecture review, threat modeling, code review, and testing.
  • Drive the on-boarding of Cerence applications to ISO
  • Educate application teams on application security requirements, threat and risk analysis processes, and secure SDLC.
  • Identify security tools, support vendor selection, drive implementation and management system reporting.
  • Lead application vulnerability assessments.
  • Analyze output from security tooling and provide guidance to drive remediation.
  • Assess SDLC processes and provide guidance on increasing security review coverage.
  • Consult with development and QA staff to identify false positive root causes and prioritize remediation based on security scanning tools' output.
  • Perform tasks related to securing and maintaining the security of applications, tools, and processes.
  • Work with internal QA teams to add security testing to their processes.
  • Assist in the development of test cases, scripts, procedures, and tooling for QA security testing.

    • Prior Experience & Qualifications

  • Threat Modeling (ISO 21434 compliant a bonus).
  • Understanding and familiarity with common code review methods and standards.
  • Knowledge of secure coding patterns and pitfalls in multiple languages (C, C++, Java, Python).
  • Demonstrated experience providing security review of web applications, mobile applications, thick clients, web APIs (REST, SOAP), AuthZ/AuthN protocolsand technologies, and cryptography.
  • Experience with static analysis and dynamic analysis tools.
  • Experience with offensive security tools and methodologies.
  • Penetration testing experience, especially at the application level.
  • Expertise with development and test toolsets (source code control, build systems, test automation, ticketing systems).
  • Knowledge of OWASP tools and methodologies.
  • Knowledge of modern SDLC practices and security touch points in Agile and DevOps.
  • Experience with application security requirements of BSIMM, OpenSAMM, ISO
  • 5 years of technical experience (coding, QA code troubleshooting).
  • Experience making recommendations to remediate code defects.
  • Experience in software engineering for the automotive industry a plus.

    • As Cerence looks to the future and continues an ambitious growth agenda, we need someone to join the team and help build the future of voice and AI in cars. This is an exciting opportunity to join Cerence's passionate, dedicated, global team and be a part of meaningful innovation in a rapidly growing industry.

    EQUAL OPPORTUNITY EMPLOYER

    Cerence is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all federal, state and local laws that prohibit employment discrimination on the basis of age, race, color, gender, gender identity, gender expression, sex, sex stereotyping, pregnancy, national origin, ancestry, religion, physical or mental disability, medical condition, marital status, citizenship status, sexual orientation, protected military or veteran status, genetic information and other protected classifications. Cerence Equal Employment Opportunity Policy Statement.

    All prospective and current Employees need to remain vigilant when it comes to executing security policies in the workplace. This includes:

    Following workplace security protocols and training programs to familiarize with the ways to maintain a safe workplace.
    - Following security procedures to report any suspicious activity.
    - Having respect for corporate security procedures to allow those procedures to be effective.
    - Adhering to company's compliance and regulations.
    - Encouraging to follow a zero tolerance for workplace violence.

    Basic knowledge of information security and data privacy requirements (, how to protect data & how to be handling this data).

    Demonstrative knowledge of information security through internal training programs.

  • CAE GmbH

    IT Security Engineer

    vor 1 Woche

    CAE GmbH Aachen, Deutschland

    Your tasks: · Support the creation and optimization of the company ́s information security concept · Support the definition of cyber security processes for the corporate IT infrastructure and projects/products · Support the definition of hardening document templates · Support the ...

  • Enrichment Technology Company Ltd. Zweigniederlassung Deutschland

    IT Security Engineer

    vor 2 Tagen

    Enrichment Technology Company Ltd. Zweigniederlassung Deutschland Jülich, Deutschland

    ETC ist ein internationales High-Tech-Unternehmen, dessen Hauptgeschäft die Entwicklung, Herstel­lung und Installation von Gaszentrifugen zur Urananreicherung ist. ETC liefert seinen Kunden dafür auch Aluminiumrohrleitungen und ist ein Anbieter von Projektmanagement-, Anlagendesi ...

  • Enrichment Technology Company Limited

    IT Security Engineer

    vor 1 Tag

    Enrichment Technology Company Limited Jülich, Deutschland

    Wir suchen zum nächstmöglichen Zeitpunkt an unserem Standort Jülich einenIT Security Engineer (m/w/d)(PA-Nr. 95/23)‎ · WER WIR SIND · ETC ist ein internationales High-Tech-Unternehmen, dessen Hauptgeschäft die Entwicklung, Herstellung und Installation von Gaszentrifugen zur Urana ...

  • Enrichment Technology Company Limited

    IT Security Engineer

    vor 1 Woche

    Enrichment Technology Company Limited Jülich, Deutschland ausbildung

    Wir suchen zum nächstmöglichen · Zeitpunkt an unserem Standort Jülich einen · IT Security Engineer (m/w/d) ‎ · ‎‎(PA-Nr. 95/23)‎ · ETC ist ein internationales High-Tech-Unternehmen, dessen Hauptgeschäft die Entwicklung, Herstel­lung und Installation von Gaszentrifugen zur Uran ...

  • Enrichment Technology Company Ltd. Zweigniederlassung Deutschland

    IT Security Engineer

    vor 2 Wochen

    Enrichment Technology Company Ltd. Zweigniederlassung Deutschland Jülich, Deutschland

    ETC ist ein internationales High-Tech-Unternehmen, dessen Hauptgeschäft die Entwicklung, Herstellung und Installation von Gaszentrifugen zur Urananreicherung ist. ETC liefert seinen Kunden dafür auch Aluminiumrohrleitungen und ist ein Anbieter von Projektmanagement-, Anlagendesig ...

  • Zeiss Group

    Software security engineer

    vor 1 Woche

    Zeiss Group Geich, Deutschland Ganztags

    Unterstützung und Beratung unseres Entwicklerteams bei der Erstellung, Planung und Umsetzung von Anforderungen bezüglich Software Security Beratung unserer OEM-Kunden bei sicherheitsrelevanten Fragen zur Software und Bereitstellung zusätzlicher Sicherheitsdokumentationen Nachverf ...

  • fka

    Engineer (m/w/d) Safety - Quality Assurance, IT-Security, Ingenieur

    vor 1 Woche

    fka Aachen, Deutschland

    # Referenznummer: 2021_13 · Wir suchen dich als Engineer (m/w/d) Safety für den Bereich "Electrics & Electronics" am Standort Aachen ab sofort · Deine Herausforderung · Du analysierst, entwickelst und erstellst Sicherheitskonzepte von Fahrzeugsystemen und Systemkomponenten · Dara ...

  • CAE

    IT Security Engineer

    vor 1 Tag

    CAE Stolberg (Rhineland), Deutschland Ganztags

    Role and Responsibilities · CAE is a global leader in training for the civil aviation, defence and security, and healthcare markets. Backed by a 70-year record of industry firsts, we continue to help define global training standards with our innovative virtual-to-live training s ...

  • Enrichment Technology Company Limited

    IT Security Engineer

    vor 1 Woche

    Enrichment Technology Company Limited Jülich, Deutschland Festanstellung

    Was sind Ihre Aufgaben? Planung, Implementierung, Dokumentation, Protokollierung und Aufrechterhaltung von IT-‎Sicherheitskontrollmaßnahmen; Enge Zusammenarbeit mit dem IT Security Manager, den IT Teams und InfoSec, um Risiken in verschiedenen IT-‎Systemumgebungen aufgrund eines ...

  • CAE

    IT Security Engineer

    vor 5 Tagen

    CAE Stolberg, Deutschland OTHER

    Role and Responsibilities · CAE is a global leader in training for the civil aviation, defence and security, and healthcare markets. Backed by a 70-year record of industry firsts, we continue to help define global training standards with our innovative virtual-to-live training so ...

  • Cerence

    Language Modeling Intern

    vor 5 Tagen

    Cerence Aachen, Deutschland

    A Moving Experience. · Position summary · Your role will consist of various tasks related to language modeling, such as language model adaptation, bug fixing, parameter tuning, etc. · Knowledge, skills and qualifications · Education: Degree or advanced degree in computer science, ...

  • RWTH Aachen University

    Research Assistant/associate

    vor 1 Woche

    RWTH Aachen University Aachen, Deutschland

    **Weitere Informationen**: · The position is to be filled at the earliest possible date and offered for a fixed term for two years. · An extension is being aimed at. · The fixed-term employment is possible as it constitutes one of the fixed-term options of the Wissenschaftszeitve ...

  • FEV Romania

    Senior Enterprise Integration Architect

    vor 1 Woche

    FEV Romania Aachen, Deutschland

    _Mobility connects people. As the top engineering partner for our global customers, our goal is to shape the future of mobility. With over 6,500 employees around the globe, we develop revolutionary and efficient drive systems, we cross-link vehicles with each other and their surr ...

  • Abiomed

    Supply Chain Platform and Program Specialist

    vor 6 Stunden

    Abiomed Aachen, Deutschland

    Abiomed ist ein innovatives Medizintechnik-Unternehmen mit einer inspirierenden Mission "Patients First." und einem einzigartigen Firmenmotto "Herzen regenerieren. Leben retten". Mit mehr als 2.000 Mitarbeitern ist Abiomed eines der am schnellsten wachsenden Medizintechnik-Untern ...

  • Johnson & Johnson

    Supply Chain Platform and Program Specialist

    vor 5 Tagen

    Johnson & Johnson Aachen, Deutschland

    **Supply Chain Platform and Program Specialist (M/F/d)** · Abiomed ist ein innovatives Medizintechnik-Unternehmen mit einer inspirierenden Mission "Patients First." und einem einzigartigen Firmenmotto "Herzen regenerieren. Leben retten". Mit mehr als 2.000 Mitarbeitern ist Abiome ...

  • RWTH Aachen

    Student Assistant

    vor 5 Tagen

    RWTH Aachen Aachen, Deutschland

    **Contact**: · **Name**: · Claudia Destrait · **Telephone**: · - workPhone ***: · **Institution**: · Institut für Elektrische Anlagen und Netze, Digitalisierung und Energiewirtschaft · **Our Profile**: · Three chairs cooperate at the Institute for High Voltage Equipment and Grids ...

  • Laser Technology

    Research Associate in The Field of Ultrashort Pulse

    vor 1 Woche

    Laser Technology Aachen, Deutschland

    The Fraunhofer Institute for Laser Technology ILT is Europe's leading center for contract research and development in the field of laser technology. In the Laser and Optical Systems department, you will be part of a diverse and experienced team dedicated to the development and im ...

  • gridX

    Hardware Expert

    vor 1 Woche

    gridX Aachen, Deutschland

    Your responsibilities · You are responsible for the development and implementation of the internal and external hardware strategy (edge devices) in line with gridX's long-term goals and vision. · **Technical Lead**: You continuously improve the hardware experience of our customer ...

  • gridX

    Hardware Expert

    vor 2 Tagen

    gridX Aachen, Deutschland

    Your responsibilities · You are responsible for the development and implementation of the internal and external hardware strategy (edge devices) in line with gridX's long-term goals and vision. · **Technical Lead**: You continuously improve the hardware experience of our customer ...

  • RWTH Aachen

    Student Assistant

    vor 5 Tagen

    RWTH Aachen Aachen, Deutschland

    **Intelligent sensors in in-network computing**: · **Contact**: · **Name**: · Kathrin Gerhardus · **Telephone**: · - workPhone ***: · **Institution**: · Lehrstuhl für Technologie der Fertigungsverfahren · **Our Profile**: · The Digital Transformation department of the Chair of Ma ...