Mid/Senior Applications Security Engineer

Company Description

SmartRecruiters is a values-driven, global-minded, and well-funded tech employer on a mission to connect people to jobs at scale. As a global leader in enterprise recruitment software, SmartRecruiters offers a cloud-based global Hiring Success platform that allows teams to attract, select, and hire the best talent. 4,000 companies worldwide rely on SmartRecruiters to achieve hiring success—including brands like Bosch, LinkedIn, Skechers, and Visa—using recruitment marketing, CRM, AI, ATS, and a marketplace of 600+ connected vendors all within one scalable platform.

SmartRecruiters was recognized by Forbes as one of the Best Employers in 2020. We are proud to offer a collaborative, diverse, and remote-friendly work environment, as well as competitive salaries and generous equity. We believe in promotion from within, so high performance can lead to upward mobility. Needless to say, we make sure you’re taken care of. Our inclusive office environment welcomes and respects all.

Job Description

Have you ever dreamed of driving security standards and implementations at a fast-paced growing scaleup that is a market-leading SaaS vendor in its category? If you are passionate about application security, about making it super hard for any attackers to disrupt or penetrate our systems, and if you think that these kinds of challenges are exciting then you are most welcome to join our team based in Poland, working remotely or joining our Kraków office.

Tech Stack:

• Advanced:  Web Security, SSDLC, OWASP, SANS, Pentesting, security tools,  Linux
• Nice to have: Java, JavaScript, Python, DevSecOps, CI/CD,  AWS, Kubernetes, Docker, Burp Suite, WAF, SIEM, Vulnerability Management

You will:

• Performing security source code analysis.
• Consulting for teams of developers in the field of software security
• Performing application penetration tests
• Suggesting security improvements & coding culture & security tools
• Implement new application security solutions
• Analyze application vulnerabilities and provide mitigation strategies.
• Cooperation in the creation of procedures and policies as well as recommendations

This offer is for you if you:

• Like working in a fast-paced, agile environment
• Want to experience the atmosphere of a startup/scaleup
• Are a fan of security, web, technology, and new tech trends
• Are a person who wants not only to have your ideas heard but see them put into action
• Have an autonomous / self-managed work style

Qualifications

• Experience in application security including threat modeling, code reviewing, and penetration testing
• Experience in working in a security department/team or participating in the work of development teams as a person responsible for app security
• Knowledge of current threats, vulnerabilities, and risks and how to mitigate them
• Knowledge of security impacts and controls for applications in cloud environments (AWS, GCP)
• Penetration testing background, experience with web security tools 
• Understanding of information security concepts and technologies such as IDS/IPS, HIDS/NIDS, SIEM, WAF, threat modeling, pen-testing, vulnerability management
• Knowledge of current threats in cloud applications, vulnerabilities, risks, and ways to mitigate them
• Experience and background in Software Development (Java/JavaScript/Python) 
• An autonomous / self-managed workstyle
• Understanding of developing business and operational processes 
• Team player with the ability to operate in a fast-paced, ever-changing work environment
• Strong communication skills, with a good understanding of English, both verbal and written 

Additional Information

SmartRecruiters is proud to be an Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.