Application Security Specialist

Who is Volkswagen Financial Services?

It's been more than 70 years since Volkswagen Financial Services AG financed the first Volkswagen vehicles in Germany in 1949. A lot has changed since then, but our core goal hasn't; ensuring we meet the mobility needs of the people.

Volkswagen Financial Services today operates in 48 markets through its various subsidiaries, shareholdings, and joint ventures. Volkswagen Financial Services is the largest provider of automotive financial services worldwide.

At VWFS Porto, we are proud to foster a gender-equal workplace, where diversity is celebrated, and every individual is provided with equal opportunities to thrive and succeed.

What do we do?

VWFS Porto is a VWFS AG IT hub, and the first outside Germany. Here we will establish a long-term Business & IT company. Our primary goal is to service all European markets in implementing and maintaining contract management systems and another IT projects in other areas. Our focus is on: Core systems, satellite systems (such as document management systems, collection systems) but also extends to integrations, data, and large project organizations. For this we seek a hands-on Cybersecurity specialist with focus on IT-Applications development best practices.

In this role you will be responsible for:

Evaluating the security aspects of applications, ensuring they meet regulations standards and best practices applicable to a Financial Services company. This role involves analyzing, identifying, and mitigating security risks to protect sensitive data and maintain the integrity of applications. It includes the organisation, monitoring and reporting of applications 2nd Line Review, according to the evaluation of evidence provided by the applications responsible.

We believe that the right profile for this job should have / be:

- 2/3 years of project experience from IT compliance and security implementation projects in the financial sector. Knowledge in process models such as Scrum, Kanban, LCM is a plus
- Comprehensive expertise in regulatory requirements and standards (BAIT, COBIT, ITIL, BSI basic protection and ISO 2700x) is required
- Certification (ISACA) Certified Information System Auditor is a differential
- Extensive experience in managing emails and tickets with support of tools such as Microsoft 365 and JIRA, as well as prioritizing for an optimized processing workflow
- Creation of data models with the help of analysis tools for data preparation and determination of data inconsistencies to support audits
- Specialized in auditing and advising banks and financial service providers on IT processes
- Complete university studies in computer science or any equivalent & have at least 5 years of working experience in this area.
- Speaks and writes English fluently (At least B2 level).

What we Offer:

- Long-term contract.
- Competitive package including private health insurance, life insurance and meal allowance (pay by meal card).
- Bonuses and benefits depending on performance
- Schooling allowance and pension scheme
- Incredible and unique annual company events
- Opportunity to work on an international project and be part of multicultural and multidisciplinary team
- Solid performance evaluation and career management methodologies
- Continuous training – technical and behavioral development.