Software Security Engineer

RED Global - Software Security Engineer - 6 months + Ext Contract - Start ASAP

On behalf of our Global Key Partner, RED is currently looking for a Software Security Engineer to join us.

Start: July 2025 - 12 months (extension likely, project duration up to 3 years)
Location: Bulgaria (Sofia-based, hybrid role)
Language: English (mandatory), Bulgarian (a plus)
Candidates must be based in Bulgaria

Our client is building a new security team in Sofia, Bulgaria, and is looking for passionate and qualified software security engineers. This role is ideal for freelancers who want to shape secure software development practices in a modern, agile environment. You will work closely with cross-functional teams to implement and support SDOL processes and ensure that security is Embedded throughout the development cycle.

Key Responsibilities

• Conduct security assessments (vulnerability scans, penetration tests, risk assessments)
• Analyze vulnerabilities, manage false positives, and monitor SAST tools
• Monitor security logs and respond to incidents and vulnerabilities
• Manage Jira backlogs for security findings, exceptions, and risks
• Report on security and compliance posture of software platforms
• Support SDOL rollout and process documentation
• Integrate security controls into CI/CD pipelines (SAST, DAST, dependency scanning)
• Maintain security policies and procedures aligned with ISO 27001, SOC 2, HIPAA, GDPR
• Configure and optimize security tools and scanners
• Facilitate threat modelling and risk assessments (LeanIX, Signavio)
• Support internal and external audits and certifications
• Document security architectures, exceptions, and tool configurations
• Collaborate on security concepts with architects, service owners, and SGS contacts