Skip to content
MVPeople Group Logo
MVPeopleGroup
Application Security

Senior AppSec Engineer

AmsterdamPermanentHybridSenioroverige
Apply nowAsk a question

About the assignment

You join a leading organisation that takes application security seriously. Your mission: prevent vulnerabilities before they reach production and reduce security risk across the software development lifecycle.

You'll own AppSec strategy, guide developers on secure coding, and conduct architecture reviews. You'll also lead incident response for application-level breaches and mentor junior security engineers.

This role bridges development and security—you influence both teams to build security in, not bolt it on.

Your responsibilities

  • Design and implement secure code review processes using SAST/DAST tools
  • Conduct threat modelling and architecture security reviews for critical applications
  • Lead vulnerability management: triage, remediation tracking, and vendor coordination
  • Develop secure coding standards and training for engineering teams
  • Perform security assessments and penetration tests on applications
  • Respond to application security incidents and root-cause analysis
  • Evaluate and integrate AppSec tools into CI/CD pipelines
  • Report security metrics and risks to technical leadership

Tech Stack & Tools

Platforms & Tooling

Burp SuiteSonarQubeSnykOWASP ZAPFortifyCheckmarx

Frameworks & Standards

OWASP Top 10OWASP SSDLCPTESCWE/CVSS

Cloud & Infrastructure

AWSAzureGCP

Methodologies

Threat modellingSecure code reviewVulnerability managementSDLC integration

Certifications (preferred)

OSCPOSWECEHCISSP

Must-haves

  • 7+ years in application security or secure software development
  • Hands-on experience with SAST, DAST, and SCA tools
  • Strong understanding of OWASP Top 10 and common application vulnerabilities
  • Experience mentoring developers on secure coding practices
  • Fluent in English; Dutch is a plus

Nice-to-haves

  • Experience with CI/CD security (GitHub Actions, GitLab CI, Jenkins)
  • Background in software development or DevOps
  • OSCP or OSWE certification

What we offer

  • Direct impact on application security roadmap and strategy
  • Work with modern development teams and cutting-edge tools
  • Continuous learning budget for certifications and conferences
  • Flexible working arrangements and work-life balance
  • Competitive compensation package
  • Personal guidance from a dedicated MVPeople consultant who knows your niche

The process

1

Introduction

Phone call with your MVPeople consultant (within 24 hours)

2

Match & Brief

We discuss the assignment in detail and prepare you

3

Client meeting

Introduction to the client

4

Start

Contracting and onboarding

Details

Type

Permanent

Location

Amsterdam

Work model

Hybrid

Level

Senior

Industry

overige

Posted

24 March 2026

Contact

MVPeople Group

jobs@mvpeoplegroup.com
Apply nowMore information

Related vacancies

IT Risk ManagementPermanent

Senior Security Risk & Resilience Consultant

AmsterdamHybrid
View vacancy
CISOPermanent

Senior Director Security Operations

AmsterdamHybrid
View vacancy
GRC & CompliancePermanent

Cybersecurity Specialist

AmsterdamHybrid
View vacancy
Apply now