Senior Software Security Engineer

The Avaloq Security team is an international team of analysts, senior and expert software engineers and architects. The Avaloq Security team develops and maintains central application security frameworks and tools for all companywide technology stacks and consults the business teams on best practice implementations for context specific security requirements. It furthermore operates the group-wide application security assessments, monitors the security vulnerabilities and supports the business teams in related risk mitigation plans.

Your key tasks

• Analyse, design, and develop requirements in collaboration with Product Development, customers, business analysts, and software partners.
• Design, implement, and maintain internal CI / CD pipelines and automated tools to support vulnerability management, security reporting, and efficient development workflows.
• Contribute to and collaborate across departments on cross‑functional projects.
• Check and maintain the daily automated build process, analysing security warnings and providing guidance or fixes as required.
• Monitor third‑party library enrolment, updates, and removals using in‑house tools and Mend (or similar solutions).
• Evaluate and validate detected vulnerabilities, assess exploitability, provide expert analysis on false positives, and develop potential fixes.
• Maintain configuration control and ensure accuracy of the release baseline.
• Coordinate security‑related actions across multiple teams to ensure the high quality and security of Avaloq products.
• Prepare and distribute documentation and reports related to security risks, findings, and remediation progress.
• Conduct periodic reviews to verify compliance with internal security policies, guidelines, and best practices.
• Participate in internal technical discussions, sharing knowledge on security implementation, vulnerabilities, and opportunities for improvement.

#J-18808-Ljbffr