Senior Application Security Engineer (Poland, Remote)
Remote, Poland
Applications have closed
Apollo.io
Search, engage, and convert over 275 million contacts at over 73 million companies with Apollo's sales intelligence and engagement platform.Apollo.io is the leading go-to-market solution for revenue teams, trusted by over 500,000 companies and millions of users globally, from rapidly growing startups to some of the world's largest enterprises. Apollo.io provides sales and marketing teams with easy access to verified contact data for over 270 million B2B contacts, along with tools to engage and convert these contacts in one unified platform. By helping revenue professionals find the most accurate contact information and automating the outreach process, Apollo.io turns prospects into customers. Apollo raised a series D in 2023 and is backed by top-tier investors, including Sequoia Capital, Bain Capital Ventures, and more, and counts the former President and COO of Hubspot, JD Sherman, among its board members. Apollo.io is growing rapidly, with 900% revenue growth since 2021, and is looking for world-class talent to keep building with us.
Your Role & Mission
The Senior Application Security Engineer will work with product and engineering to create a secure SDLC, design security features and implement tools, education and processes to reduce risk of security issues in the tech stack.
Responsibilities
- Select or build tooling to help developers build secure code
- Provide overall security architectural advice to Engineering and IT
- Manage issues sourced from penetration tests and bug bounty programs
- Participate in the security champions program
- Help Product, Engineering and IT incorporate security requirements into new products from inception
- Assist in the creation and maintenance of Security Risk Models for new projects and existing systems
Skills & Competencies
- 5+ Years of Web Application Security experience
- Strong experience with vulnerability management, or penetration testing is required.
- Extensive experience in conducting Architectural Reviews and Threat Models frequently is required.
- Strong knowledge of common AppSec issues and tooling (e.g. SCA, SAST, DAST)
- Strong Linux knowledge is a plus.
- Experience with cloud services, ideally GCP is plus.
- Strong software development skills ideally in Ruby, Node Secondary
- Strong Communication and Influencing skills
- Should have worked in SaaS environment.
- Should have extensive knowledge of Open Redirect, OAuth, and CSRF.
- Certifications: OSCP/OSWE/CEH: At least 1 Certification is a plus.
#LI-JM1
What You’ll Love About Apollo
Besides the great compensation package and culture that thrives in openness and excellence, we invest tremendous effort into developing our remote employees’ careers. The team embraces that we have a sole purpose: to help customers maximize their full revenue potential on the Apollo platform. This mindset opens us up to a lot of creative approaches to making customers successful at scale. You’ll be a significant part of a lean, remote team, empowered to really own your role as a proactive educator. We’re very collaborative at Apollo, so you’ll be able to lean on your teammates, even in adjacent departments, to help you achieve lofty goals. You’ll be supported and encouraged to experiment and take educated risks that lead to big wins. And, you’ll have a whole team remotely by your side to help you do it!
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security CEH Cloud CSRF DAST GCP Linux OSCP OSWE Pentesting Ruby SaaS SAST SDLC Vulnerability management
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Operations Analyst jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open SaaS-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs