Secure coding specialist

The Development Services department is the knowledge center within ABN AMRO for everything concerning software development. It’s goal is to continuously improve the quality of the software development process and it’s deliverables. To accomplish that mission, we harvest best practices from the development community and translate these into standards and guidelines. Common for all technologies is the need for strong security. The Secure Coding (SECO) team takes care of all matters concerning the security of software development. A Domain Expert for SECO helps development teams in the organisation with improving the quality of security of their products.

In this role, you’ll work closely with development teams across the bank. You’ll help them understand and fix security findings, improve how our tooling works, and contribute to solutions that make secure development easier. You’ll also be involved in looking at new topics like AI-driven threats and agentic development.

You’ll be working at the intersection of security and development, helping teams deal with vulnerabilities in an efficient and effective way.

What you’ll be doing:

– Maintain and improve ABN AMRO’s security posture.
– Maintain Secure Coding Standards.
– Triage and analyse findings from SAST & SCA  tools like Fortify and Nexus Lifecycle.
– Help developers understand what a security finding really means, and how they can solve it.
– Support teams in fixing vulnerabilities in their code.
– Improve and fine-tune rulesets to reduce noise and increase quality.
– Contribute to internally developed tools such as our Repository Scanner (RESC).
– Think along about how we handle new risks, including AI-driven attacks.
– Share knowledge and help teams become more secure over time
No two days are exactly the same some days you’ll be deep in code, other days you’ll be discussing solutions with teams or improving tooling.