Software Security Specialis

Are you passionate about IT security and eager to make a difference in the world of software development? Scania's Devtools Group is seeking a talented member to join our team as a Software Security Specialist!

As a Software Security Specialist, you will be part of our group consisting of a portfolio manager, business developer, solution architect, security lead, product owners, and platform engineers organized into agile scrum teams. With a portfolio that includes industry-leading tools like GitLab, Atlassian Jira, Microsoft Azure DevOps, and JFrog Artifactory, our team together with you as Software Security Specialist is responsible for providing suitable development tools to our software engineers, enabling them to build and release software for cutting-edge technologies like self-driving vehicles and cloud computing. Some of your responsibilities: 

• To play a vital role in ensuring the security of our development tools, (cloud) infrastructure and software 
• Be the go-to person who implements your suggested ideas in collaboration with our product owners 
• Drive Security Supply Chain initiative and drive security reviews of tools in close collaboration with our security departments guidelines.
• Act as a developer advocate and security evangelist, actively promoting, and enforcing security principles and guidelines. 
• Empower our team to use security frameworks and tools effectively, ensuring that our software development process remains secure and resilient

As a person, you are passionate about sharing knowledge and can influence others positively. Excellent Communication and presentation skills are essential as you'll be presenting technical information to stakeholders. In addition to your security mindset, you thrive in an ever-changing environment and enjoy working with the latest technologies.
To succeed in the role, we also see that you have:
• A couple of years of experience in software development, along with expertise in CI/CD, automation (DevSecOps), and infrastructure-as-code in the cloud (preferably AWS).
• Experience in larger organizations, integration architecture, and technical security awareness.
• Excellent communication skills in English in both speaking and writing with the ability to explain complex technical concepts to non-technical stakeholders.
• Academic degree in IT, computer science, engineering, or similar is highly appreciated.