Senior Software Security Engineer

• Analyse, design, and develop requirements in collaboration with Product Development, customers, business analysts, and software partners
• Design, implement, and maintain internal CI/CD pipelines and automated tools to support vulnerability management, security reporting, and efficient development workflows
• Contribute to and collaborate across departments on cross-functional projects
• Check and maintain the daily automated build process, analysing security warnings and providing guidance or fixes as required
• Monitor third-party library enrolment, updates, and removals using in-house tools and Mend (or similar solutions)
• Evaluate and validate detected vulnerabilities, assess exploitability, provide expert analysis on false positives, and develop potential fixes
• Maintain configuration control and ensure accuracy of the release baseline
• Coordinate security-related actions across multiple teams to ensure the high quality and security of Avaloq products
• Prepare and distribute documentation and reports related to security risks, findings, and remediation progress
• Conduct periodic reviews to verify compliance with internal security policies, guidelines, and best practices
• Participate in internal technical discussions, sharing knowledge on security implementation, vulnerabilities, and opportunities for improvement

• University degree in IT, Mathematics, Physics, or a related technical discipline
• Must have at least 3-5 years of relevant work experience
• Strong experience in designing, implementing, and maintaining internal CI/CD pipelines and automation tooling
• Senior-level engineering expertise with hands-on skills in Python, Java, JavaScript, Gradle, Jenkins (or other CI/CD tools)
• Knowledge of containerized applications and experience with Kubernetes and/or OpenShift (or similar container orchestration platforms)
• Deep understanding of security concepts, industry standards, and best practices
• Practical experience with vulnerability management tools and automated security scanning solutions
• Ability to communicate technical information effectively to non-technical stakeholders
• Strong analytical capabilities, attention to detail, and commitment to delivering high-quality results
• Positive, collaborative mindset with the ability to promote best practices across the organization

Exposure to financial markets and understanding of financial products is an advantage

• Annual bonus
• Flexible working
• Instant recognition
• Access to Udemy for professional and personal learning