Quick Summary
28Stone is one of just four capital markets companies in Latvia. But what really sets us apart is that all of our clients are in the US and UK. So we are operating on a truly global scale,
- Coordinate and oversee application vulnerability remediation efforts in partnership with engineering, DevOps, and product teams, ensuring alignment with enterprise security governance requirements.
- Manage and track application onboarding into approved AppSec scanning tools (e.g., SAST, DAST, SCA), ensuring coverage, scan success, and adherence to secure coding and DevSecOps policy timelines.
- Monitor security scan outputs, triage findings, and communicate risk-based remediation guidance to development teams, ensuring vulnerabilities are resolved within defined risk-based SLAs.
- Support governance processes by coordinating policy exception, waiver, and risk acceptance submissions, ensuring appropriate justification, approvals, and documentation in line with GRC standards.
- Plan, facilitate, and lead cross-functional remediation working sessions with engineering teams, platform owners, and third-party vendors to address remediation blockers and risk concerns.
- Enforce secure coding and DevSecOps policy compliance by identifying gaps, monitoring adherence, and escalating non-compliance to engineering leadership, risk owners, and governance stakeholders as required.
- Identify and manage orphaned or unowned applications within AppSec tooling, ensuring accountability, ownership assignment, and accurate system-of-record data.
- Develop, maintain, and present security and compliance dashboards that provide visibility into application risk posture, vulnerability trends, remediation progress, and policy compliance metrics.
- Document AppSec, DevSecOps, and GRC processes, controls, and operating procedures to ensure consistency, repeatability, and audit readiness.
- Support internal audits, regulatory assessments, and external reviews by maintaining accurate compliance evidence, vulnerability remediation records, and risk management documentation.
- Bachelor’s degree in computer science, Information Security, or a related field.
- At least 3 years of experience in vulnerability management, security coordination, or related IT security role.
- Hands-on experience with vulnerability management and coordination using at least one of: Invicti, SonarQube, Sonatype, or Tenable.
- Experience tracking remediation timelines and SLA compliance.
- Experience coordinating across multiple teams.
- Experience escalating and resolving issues with internal teams and external vendors.
- Excellent written and verbal communication skills in English, with ability to provide clear context and actionable information to teams.
- Strong coordination, follow-up abilities across multiple teams, and persistence until issues are resolved.
- Familiarity with data encryption concepts (data at rest and in transit).
- Familiarity with CI/CD pipelines and DevOps workflows.
- Experience with ServiceNow or similar ticketing systems.
- Flexible work schedule and the possibility of working from home in Latvia or one of our offices (Riga, Daugavpils).
- Health insurance and mental wellness platform from Day 1: sport/dentist/vaccination/accident plans + massage chair in the office.
- Annual training budget.
- Technology communities: friendly and experienced team members who support your professional growth.
- Sports community: Squad Hour gym membership deal, 28Stone volleyball team, various public sports events, and monthly challenges.
- Social events: bi-weekly lunches, board game nights, team buildings, company-wide events.
- Loyalty rewards program: referral bonuses, gifts, and merchandise on your work anniversary.
- Paid mobile phone bills.
- Additional one day of paid sick leave for emergency cases.
- Modern & ergonomic office space: all the resources and tools to perform your tasks.
- Additional perks in the office: free snacks, fruits, tea, coffee, board games, novuss table and Xbox.
What We Offer
~1 min readGross: 2500- 3800 EUR
We are flexible and use an individual approach with each candidate we meet, so we invite you to apply even if you do not meet some of the listed requirements.
Only candidates who have the right to work in Latvia are considered for this position.
The mentioned remuneration may vary depending on the candidate’s skills, qualifications, and experience.
Location & Eligibility
Listing Details
- Posted
- July 9, 2026
- First seen
- July 13, 2026
- Last seen
- July 13, 2026
Posting Health
- Days active
- 0
- Repost count
- 0
- Trust Level
- 60%
- Scored at
- July 13, 2026
Signal breakdown
Please let 28Stone know you found this job on Jobera.
Similar Coordinator jobs
View all →Browse Similar Jobs
Stay ahead of the market
Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.
No spam. Unsubscribe at any time.
