Application Security Engineer
23k - 29k PLN23 000 - 29 000 PLN/ mies.UoP
MidFull-time·Umowa o pracę
#383638·Dodano 4 dni temu·0
Źródło: nofluffjobs.comTech Stack / Keywords
AWS
Wymagania
- Bachelor’s degree in Computer Science, Engineering, MIS, or equivalent practical experience.
- 2–5 years of experience in application security, product security, software engineering with a security focus, or a related technical role.
- Strong understanding of application vulnerabilities and mitigation strategies (OWASP Top 10, CWE).
- Experience with CI/CD tooling, Git-based workflows, and modern development practices.
- Familiarity with cloud security concepts and hands-on experience with at least one cloud platform (AWS, Azure, or GCP).
- Experience with one or more programming languages such as Python, Go, Java, JavaScript/TypeScript, or Ruby (preference for Java and Python).
- Experience with application security tools such as OWASP ZAP, Burp Suite, SAST/DAST tools, SCA, or dependency scanning.
- Knowledge of secure coding principles, API security, authentication, authorization, and secrets management.
- Strong problem-solving skills and ability to communicate technical issues clearly.
- Understanding of agile development processes and teamwork within engineering teams.
- Ability to travel approximately 25% for onboarding, offsites, customer engagements, and company events.
Obowiązki
- Integrate application security best practices into the development lifecycle by partnering with engineering teams and enabling automated security checks within CI/CD pipelines.
- Support and maintain Application Security based tooling including SAST, DAST, SCA, and secrets scanning, and assist developers in interpreting and remediating findings.
- Conduct secure code reviews, threat modeling sessions, and application architecture assessments to identify risks and propose mitigation strategies.
- Develop and maintain security automation, guardrails, and reusable components.
- Assist in defining and improving secure coding standards and application hardening practices.
- Support monitoring and detection efforts by improving application-level logging, telemetry, and alerting.
- Assist in incident response activities related to application vulnerabilities, including verification, triage, and remediation support.
- Stay current on emerging threats, vulnerabilities, and best practices in application and product security.
- Contribute to documentation such as security requirements, guidelines, and remediation playbooks.
- Participate in internal security reviews, compliance-driven assessments, and architectural walkthroughs.
- Develop and maintain application security tools, pipelines, and workflows.
- Collaborate with engineering and product teams to ensure secure deployment and continuous improvement of applications.
Benefity
- Sport subscription
- Private healthcare
- Flat structure
- International projects
- Life & group insurance
- Free coffee
- Canteen
- Free snacks
- Free beverages
- Free lunch
Karta sportowa
Opieka zdrowotna
Ubezpieczenie
Napoje w biurze
Firmowa stołówka
Darmowe przekąski
STARBURST DATA POLSKA sp. z o.o.
3 aktywne oferty