CRA Practice Lead – Secure Software Development

November 6

Apply Now

Receive Emails with Similar Jobs

Codvo.ai

WebsiteLinkedInAll Job Openings

AI • Cybersecurity • SaaS

Codvo. ai is a technology company that specializes in delivering strategic enterprise solutions through advanced AI-driven innovation. They focus on transforming enterprise data into measurable value by helping businesses accelerate growth with custom AI implementations tailored to meet the specific challenges of various industries. Their extensive service offerings include AI/ML automation, application development, data analytics, cybersecurity, and digital transformation, ensuring that organizations can thrive in a rapidly evolving digital landscape.

51 - 200 employees

Founded 2019

🔒 Cybersecurity

☁️ SaaS

📋 Description

• Define the vision, strategy, and operating model for a CRA-aligned secure development and certification practice. • Build and lead a high-performing team across secure development, compliance testing, and DevSecOps. • Collaborate with product, legal, and security teams to interpret CRA requirements and embed them into engineering workflows. • Establish secure-by-design principles across diverse technology stacks (e.g., web, mobile, embedded, cloud-native, edge). • Drive adoption of secure SDLC practices including threat modeling, secure architecture reviews, and secure coding standards. • Ensure integration of security controls across heterogeneous environments and third-party components. • Operationalize CRA-aligned testing and documentation processes across all software delivery pipelines. • Lead the implementation of automated compliance checks, SBOM generation, and vulnerability management. • Ensure traceability, audit readiness, and conformity assessment support for CRA and related regulations (e.g., NIS2, ISO 27001). • Define and implement a technology-agnostic toolchain for secure development, testing, and compliance automation. • Integrate security and compliance tooling into CI/CD pipelines across multiple platforms and languages. • Promote reuse of security patterns, templates, and automation assets across teams. • Act as the technical authority on CRA compliance for internal teams, partners, and clients. • Support pre-sales, solutioning, and proposal development for CRA-related services. • Represent the practice in regulatory, industry, and standards forums.

🎯 Requirements

• 10+ years of experience in software engineering, cybersecurity, or compliance, with at least 3 years in a leadership role. • Proven experience in secure software development across multiple platforms (e.g., cloud, mobile, embedded, edge). • Strong understanding of cybersecurity regulations including CRA, NIS2, and global standards (e.g., ISO/IEC 27001, ENISA guidelines). • Hands-on experience with secure SDLC, DevSecOps, and software composition analysis (SCA) tools. • Familiarity with SBOM standards (e.g., SPDX, CycloneDX) and vulnerability disclosure processes. • Excellent communication, leadership, and stakeholder management skills.

🏖️ Benefits

• Lead a pioneering practice at the intersection of cybersecurity, compliance, and software engineering. • Work on high-impact projects across industries and platforms. • Collaborate with a world-class team across AI, Edge, Cloud, and IoT domains. • Be part of a mission to build resilient, compliant, and trustworthy digital systems.