The PSI Group develops software products for optimizing the flow of energy and materials for utilities and industry. As an independent software producer with more than 2,300 employees, PSI has been a technology leader since 1969 for process control systems that ensure sustainable energy supply, production and logistics by combining AI methods with industrially proven optimization methods. The innovative industry products can be operated on-premises or in the cloud.
Are you passionate about Information Security and eager to shape secure software development across a dynamic organization? We’re looking for an experienced and driven Application Security Manager to strengthen our Security practices and empower our business units.
Responsibilities
* Clear communication of technical security issues to teams, management, and customers
* Establishment and management of application security roles in the business units
* Further development and implementation of a secure SDLC (including standards and guidelines)
* Introduction and operation of SAST/DAST and implementation of threat modeling (e.g., STRIDE, PASTA)
* Ensuring security in CI/CD, vulnerability & patch management (including SBOM)
* Coordinating security tests and working closely with Dev, Ops & Compliance
* Promoting secure coding and secure architectures
* Ensuring compliance with open source licenses
Requirements
* Strong knowledge of web vulnerabilities (e.g., OWASP Top 10) and secure development practices
* Experience with cloud platforms & containerization (e.g., Docker)
* Familiar with security frameworks (e.g., NIST, OWASP ASVS)
* CISSP or similar certification is a plus
* Analytical, solution-oriented mindset with the ability to quickly grasp new topics
* High intrinsic motivation, curiosity, and passion for Information Security
* Clear and concise communication skills
* Proactive, collaborative approach and comfortable working in agile environments