ABOUT US
Join Toreon & Data Protection Institute, where your interest in cybersecurity and management consulting converge.
At Toreon, we believe in the positive power of technology and the value of teamwork. Since 2014, we’ve been working with a team of over 60 cybersecurity experts toward a common goal: empowering organizations to operate safely and successfully in the digital world.
We stand for maximum impact and maximum growth, not just for our clients, but also for our people. In everything we do, we combine a winning mentality with integrity and quality. Together, we create solutions that work not only for today but also for the future.
ABOUT THE CHALLENGE
In this role, you take a central position in strengthening the security posture of products across a broad customer landscape. You bring structure, clarity, and progress to vulnerability management and SDLC processes, working closely with clients, third-party vendors, and internal teams.
You coordinate communication across all stakeholders and provide clear weekly insights into the security status of several applications. You actively support the remediation and validation of vulnerabilities, ensuring actions are properly followed up. You perform regular checks on code quality and outdated dependencies, triage findings, and translate them into concrete actions in Jira, while continuously improving workflows through smart automations and streamlined processes.
You also take on an advisory role by presenting on SDLC processes and the Risk Register, helping stakeholders align on vulnerability management and maturity improvements. By facilitating collaboration between different parties, you ensure that security initiatives are embedded in a sustainable way.
Within assessments, you conduct gap analyses based on the OWASP SAMM framework, with a strong focus on Cyber Resilience Act (CRA) requirements. You translate these insights into clear roadmaps and strategic improvements, while coaching teams in strengthening their processes and maturity.
In addition, you contribute to the development and customization of SDLC, AI Act and CRA policies, tailored to the client’s context. You also design and implement a coordinated vulnerability disclosure framework, including the processes needed to support it long-term.
INSIDE OUT
You’re a people person who thrives on giving advice and supporting others. You adapt easily to different situations, motivate those around you, and offer valuable insights, always with respect and empathy.
You take ownership of your actions and consistently act with integrity. Your discretion and self-discipline are reflected in the quality of your work. In your projects, your expertise stands out. You’re committed to growing your knowledge and just as eager to share it with others.
REQUIREMENTS
Experience with application security:
-
Secure Software Development Lifecycle (SDLC)
-
OWASP SAMM (practical implementation)
-
Software architecture & secure coding
-
Cyber Resilience Act
Technical skills:
-
Strong understanding of DAST, SAST, SCA and related tools
-
Experience with SAST/SCA/SBOM tooling
-
Familiar with Jira, Confluence, Notion, and AI tools (e.g., Claude)
-
Ability to select the right tools for the right context
Nice to have:
-
IEC 62443, ISO 27001, AI Act
Professional skills:
-
Strong communication and presentation skills
-
High attention to quality (own work and peers)
Education & certifications:
-
Master’s degree (e.g., Engineering, Computer Science, Economics)
-
Relevant security certifications or willingness to obtain them
WHAT YOU CAN EXPECT
Cybersecurity with impact
We’re focused exclusively on cybersecurity. From day one, you’ll work on meaningful projects with direct client exposure.
Growth & knowledge sharing
Learn from top experts and grow through mentorship, a buddy system, trainings, and your personal development plan.
People-first performance culture
Entrepreneurship and performance thrive in a safe, open environment where you can be yourself and take initiative.
Strong salary package
Competitive salary and a generous training budget to support your ambitions.
Culture fit over perfection
You don’t need to tick every box. Attitude and motivation matter just as much.
Let’s chat! Bring your unique self!
