Application Security Engineer

Ireland

Applications have closed

The Opportunity

Brightflag is growing fast and transforming how the legal industry works. The designs and decisions they make daily will have a huge influence on how our 100+ customers’ legal departments work and how they deal with their external law firms. One of the unique things about us is our amazing customer service - our customers love us.

As an application security engineer at Brightflag, you will play an integral part in the success of our engineering team and impact our customers by influencing the delivery of features in a secure way. We have a number of high-profile customers in Europe, the US and Australia, and we are growing quickly. Our engineers are ambitious and thrive on being given responsibility, expressing their creativity and solving interesting problems to help us build something exceptional. We build products in an Agile, process driven methodology, you will work with the members of the Product & Engineering teams to ensure requirements, their technical designs and the implementation of these features are following our InfoSec and Engineering security standards.

 

What You Will Be Doing

  • Involved in the SDLC, reviewing requirements with security impact, review technical design of those  features, and a secure code review process
  • Significant amount of penetration testing on features of the application for vulnerabilities like OWASP common issues
  • Improving DevOps pipeline with security tools,  including static analysis, dependency scanning, dynamic testing
  • Developing and delivering security training to software engineers.
  • Collaborate with our DevOps and AWS infrastructure security team, supporting testing and scanning of vulnerabilities in the application tech stack (Java, Spring, MySQL, Elastic)
  • Support external penetration test process

 

Skills & Experience

  • Bachelor’s degree (in Computer Science or related field) or additional industry certifications
  • 5+ years experience in a Security Engineer or similar role
  • Significant Experience in security “penetration” testing of web applications, with knowledge of the popular SAST tools
  • Excellent knowledge of OWASP vulnerabilities
  • Knowledge of emerging cyber security exploits, approaches and mitigation strategies
  • In-depth knowledge of web application architectures
  • Strong understanding of common application and network protocols, cryptographic technologies, and authentication and authorisation protocols
  • Good knowledge of Java language
  • Strong Coding/scripting/automation experience
  • Excellent communication skills

The following are a bonus

  • Experience with Java Web applications, Spring and SpringSecurity
  • Experience with SaaS multi-tenant product applications
  • Experience with AWS or other cloud platforms
  • High-growth startup experience
  • Security certifications

 

Life @ Brightflag

We’re growing fast and so is the experience we can offer you:

  • A huge opportunity to make a real impact, to shape what we do and where we are going.
  • The exposure and challenge you need to learn, grow and progress your career in a rapidly growing scale-up.
  • Complex technical and business problems to solve and the trust and autonomy you need to go and solve them.
  • A sound, helpful team, in a friendly, values-driven and inclusive environment.
  • Competitive salary. 
  • Share options.
  • 25 days holidays + 4 company ‘Reset’ days throughout the year.
  • Comprehensive health insurance, life insurance and long term illness/income protection.
  • Fully flexible work location and work patterns so you can balance life at home with life at work - come to the office, work at home… or enjoy a blend of both at your discretion. 
  • Learning subsidy of €2,000/US$2,000/AU$3,200 annually, to spend as you wish, plus study and examination leave where applicable. Our ‘bookworm’ program also enables you to order a book a month.. on us!
  • Access to Pluralsight - the on demand learning platform for tech teams.
  • The Tax-Saver or Cycle-to-Work Scheme. 
  • Wellbeing program & stipend.
  • Home office set-up supports.

We are a diverse and inclusive bunch of people. We welcome diverse perspectives and people who make every day count and strive for constant improvement. We do not discriminate based on gender, ethnicity, sexual orientation, religion, civil or family status, age, disability, or race. 

 

Location & Eligibility

This role offers a flexible work location across Ireland. Whether that be in the office in Dublin (as public health guidelines allow), remote from anywhere in Ireland, or a mix of office/remote work, you choose what works best for your lifestyle. 

Your time is valuable. To help with your application, we advise that regrettably we cannot offer work permit sponsorship/ self sponsorship for this role. 

 

About Brightflag

Hello, We’re Brightflag - one of the fastest-growing tech startups in the legal world - we’re on a mission to transform legal operations. Our patented AI-powered software combined with a best-in-class Customer Success team empowers corporate legal teams to do better, no matter the starting point. Our SaaS platform was the first to apply artificial intelligence and machine learning to legal operations management and has invested more than 100,000+ hours in its development. Using Brightflag, corporate legal teams achieve visibility into their operations, streamline internal workflows, and engage with outside counsel more efficiently. You can learn more about Brightflag Here.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Agile Application security Artificial Intelligence Automation AWS Cloud Computer Science DevOps Exploits Java Machine Learning MySQL OWASP Pentesting SaaS SAST Scripting SDLC Vulnerabilities

Perks/benefits: Career development Competitive pay Equity Flex hours Home office stipend Insurance Salary bonus Startup environment

Region: Europe
Country: Ireland
Job stats:  9  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.