Senior Security Engineer
Poznań, Greater Poland Voivodeship, Poland - Remote
Netguru
Europe’s finest custom software development company. More than 10 years of experience, over 630 developers and designers specializing in software development, mobile development and product design.Your responsibilities:
- Consulting for commercial clients
- Auditing and hardening of CI/CD pipelines and cloud-based infrastructures
- Support for project teams in implementing the best security practices in the design, development, and maintenance of web and mobile applications
- Conducting security audits, assessments, and pentests of web and mobile applications and cloud-based systems
- Helping with implementation of security tools (i.e. vulnerability scanners, SAST, DAST etc.)
- Performing security incident analysis, response, and remediation for cloud-based web applications
- Upskilling other members of project teams
Working in one of these specializations: Pentester, Cyber Security Consultant, Cloud Security Engineer or DevSecOps Engineer.
Requirements
- Hands-on experience in the area of web application security;
- Ability to conduct risk analysis and threat modelling based on known types of vulnerabilities and attacks on web and mobile applications;
- Knowledge of best practices and standards in the field of software development (Software Development Life Cycle - SDLC) of web applications with particular emphasis on the principles of secure software development (i.e. OWASP ASVS);
- Knowledge and experience in cloud security and best practices in an AWS/Azure/GCP environment;
- Knowledge of techniques in the field of penetration testing (reconnaissance, vulnerability analysis, pentesting tools, reporting);
- Very good command of written and spoken English (B2 +).
Nice to have:
- Experience with Linux administration, Docker, and cloud solutions like AWS or Azure;
- Experience working with tools such as SAST and DAST, vulnerability scanners, patch-level verifiers, etc.
- Technical security certifications;
- Good knowledge of the CI/CD process and automation combined with its security assessment;
- Experience in pentesting;
- Experience in security for mobile applications;
- Practical knowledge of security requirements as defined in documents such as GDPR, ISO 27001, HIPAA, PCI-DSS, PSD/PSD2.
Benefits
Perks & Benefits:
- Access to the WorkSmile platform offering benefits adapted to your preferences:
- Multisport card,
- Private health insurance package,
- Life insurance,
- And hundreds of other options to choose from 15 categories (shopping, leisure, travel, food, etc.)
- Support for your growth - a book budget and a head/manager’s budget available to every employee,
- Discounts on Apple products,
- One-time 1000 PLN home office bonus,
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Audits Automation AWS Azure CI/CD Cloud DAST DevSecOps Docker GCP GDPR HIPAA ISO 27001 Linux OWASP Pentesting PSD2 Risk analysis SAST SDLC Security assessment Vulnerabilities
Perks/benefits: Conferences Health care Salary bonus Travel
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Security Analyst jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open DevSecOps-related jobs