Application Security Engineer

23k - 29k PLN/ mies.UoP
MidFull-time·Umowa o pracę
#383638·Dodano 4 dni temu·0
Źródło: nofluffjobs.com
Aplikuj teraz

Tech Stack / Keywords

AWS

Wymagania

  • Bachelor’s degree in Computer Science, Engineering, MIS, or equivalent practical experience.
  • 2–5 years of experience in application security, product security, software engineering with a security focus, or a related technical role.
  • Strong understanding of application vulnerabilities and mitigation strategies (OWASP Top 10, CWE).
  • Experience with CI/CD tooling, Git-based workflows, and modern development practices.
  • Familiarity with cloud security concepts and hands-on experience with at least one cloud platform (AWS, Azure, or GCP).
  • Experience with one or more programming languages such as Python, Go, Java, JavaScript/TypeScript, or Ruby (preference for Java and Python).
  • Experience with application security tools such as OWASP ZAP, Burp Suite, SAST/DAST tools, SCA, or dependency scanning.
  • Knowledge of secure coding principles, API security, authentication, authorization, and secrets management.
  • Strong problem-solving skills and ability to communicate technical issues clearly.
  • Understanding of agile development processes and teamwork within engineering teams.
  • Ability to travel approximately 25% for onboarding, offsites, customer engagements, and company events.

Obowiązki

  • Integrate application security best practices into the development lifecycle by partnering with engineering teams and enabling automated security checks within CI/CD pipelines.
  • Support and maintain Application Security based tooling including SAST, DAST, SCA, and secrets scanning, and assist developers in interpreting and remediating findings.
  • Conduct secure code reviews, threat modeling sessions, and application architecture assessments to identify risks and propose mitigation strategies.
  • Develop and maintain security automation, guardrails, and reusable components.
  • Assist in defining and improving secure coding standards and application hardening practices.
  • Support monitoring and detection efforts by improving application-level logging, telemetry, and alerting.
  • Assist in incident response activities related to application vulnerabilities, including verification, triage, and remediation support.
  • Stay current on emerging threats, vulnerabilities, and best practices in application and product security.
  • Contribute to documentation such as security requirements, guidelines, and remediation playbooks.
  • Participate in internal security reviews, compliance-driven assessments, and architectural walkthroughs.
  • Develop and maintain application security tools, pipelines, and workflows.
  • Collaborate with engineering and product teams to ensure secure deployment and continuous improvement of applications.

Benefity

  • Sport subscription
  • Private healthcare
  • Flat structure
  • International projects
  • Life & group insurance
  • Free coffee
  • Canteen
  • Free snacks
  • Free beverages
  • Free lunch
Karta sportowa
Opieka zdrowotna
Ubezpieczenie
Napoje w biurze
Firmowa stołówka
Darmowe przekąski
STARBURST DATA POLSKA sp. z o.o.

STARBURST DATA POLSKA sp. z o.o.

3 aktywne oferty

Zobacz wszystkie oferty
Aplikuj teraz