Lead Software Security Specialist

We are a growing software product company with multiple products and development teams. As we scale, we are committed to embedding security into our Software Development Lifecycle to ensure our products remain secure, compliant, and resilient against evolving threats. We are looking for a Lead Software Security Specialist to take ownership of security across our development processes and drive the implementation of a Secure Software Development Lifecycle (SSDLC).

What is the role

You will play a crucial role in shaping and executing our software security strategy in collaboration with product development management and the Software Development Processes & Tools lead. You will work hands-on with development teams, implement security best practices, evaluate and select security tools, and assess our current security posture. This is a highly technical and critical role, requiring both expertise in application security and the ability to drive cultural change across the organization.

Key Responsibilities: 

• SSDLC Implementation: Lead the continuous enhancement of our Secure Software Development Lifecycle, embedding security best practices into all stages of development.  
• Security Assessments & Risk Management: Conduct and coordinate security assessments of our software products, identify vulnerabilities, and work with teams to mitigate risks.  
• Tooling & Automation: Research, select, and implement security tools for static and dynamic analysis, dependency management, and runtime protection.   
• Security Training & Awareness: Educate developers and product teams on secure coding practices and security principles.  
• Code & Architecture Reviews: Work closely with engineering teams to review code, conduct threat modeling, and recommend secure architectural patterns.   
• Incident Response & Forensics: Assist in the investigation of security incidents and help develop response strategies to minimize risk.  
• Vulnerability Management: Establish and oversee a vulnerability management program, ensuring timely identification, tracking, and remediation of security vulnerabilities.  
• Compliance & Best Practices: Ensure alignment with industry standards, frameworks, and regulations relevant to our business.  
• Collaboration & Leadership: Act as a security advocate across teams, influencing stakeholders and driving a culture of security awareness and responsibility.  

Required Skills & Qualifications 

• Master’s degree in a relevant field.
• 5 years of experience in software security or a related field.  
• Strong understanding of SSDLC principles.
• Experience with security testing tools.
• Knowledge of common security vulnerabilities and remediation techniques. 
• Familiarity with threat modeling, secure architectures and penetration testing.
• Excellent communication skills, with the ability to explain security concepts to non-security professionals.  
• Strong leadership and collaboration skills, with the ability to influence and build relationships across teams.  
• Ability to translate security concepts into practical guidance for development teams.  
• Self-driven and proactive.

Preferred Skills & Qualifications 

• Experience with both desktop and cloud applications.
• Familiarity with relevant security standards and frameworks.

What we are offering

• A unique opportunity to build and shape the security culture of a growing company.  
• The ability to work on multiple technologies and influence security practices from the ground up. 
• A flexible work environment with remote and hybrid options.  
• A supportive, collaborative, and innovative engineering culture.  
• Competitive benefits: Culture and Exercise benefits, Lunch Benefit, Bike Benefit, Comprehensive Health Insurance, Leisure-time Accident insurance, Phone benefit (both hardware and subscription), Individual competence development plan

We want you to be in Finland, but we are offering remote, hybrid or onsite options whatever suits you better. We have offices in Turku, Tampere, Kotka and Oulu

About Us

We are a leading global developer of digital and intelligent 3D based design, engineering, and information management software solutions for the marine, process, and construction industries. Our story began in the 1980s and today we have over 330 proactive, engaged and growth-minded people in 16 countries around the world. Over 6000 customers are using our software solutions in 60 countries, and we are just getting started. We make it come true! 

How to Apply

If you are a hands-on security professional passionate about embedding security into software development and eager to take ownership of security in a dynamic environment, we’d love to hear from you! Please send your application and CV right away or by April 20th at the latest. If you have any questions, do not hesitate to contact hiring manager VP Product Creation Teemu Valtonen by email teemu.valtonen@cadmatic.com.

Please note that we only accept applications submitted to our Applicant Tracking System.

Tagged as: IT & data communications