Application Security Engineer

Melbourne, VIC

PaperCut is looking for a collaborative AppSec Engineer to work with different teams to lower the risk of cyber incidents and improve PaperCut's approach to application security. Are you excited about developing security components within a passionate product business? If so, we need you!
As our AppSec Engineer, you will report to our IT & Security Manager within the Business Experience team and raise awareness of security throughout the business. You will bring your expertise in penetration and application security testing and MITRE ATT&CK and Cyber-Kill Chain to this newly created role. This is your opportunity to leave a lasting impact on security at PaperCut for everyone from employee to customer.
Our code saves trees. After 20+ years of building paper-saving print management software, we still have our first employees, first resellers, and first customers. Our success is not measured by profits and business metrics, but instead by the impact we've had on our 139 million users and our planet. We're values-driven and fuelled by coffee.

Some of the things you'll do...

  • Cyber Security-  You will work with developers, operation teams, project managers, and other partners to ensure that security requirements are integrated into the application development lifecycle. You will also evaluate and respond to new security issues and coordinate a plan to meet our goals.
  • Security Assessment- You will identify potential vulnerabilities in application code, configuration, and architecture, and make recommendations to mitigate these risks.
  • Incident Response- In the case of an incident you will investigate the cause, and communicate with partners regarding steps to address it.

What success looks like 6 months in...

  • PaperCutters describe you as a supportive AppSec Engineer who helps create clarity and visibility throughout the changes that come with transformation.
  • You have built relationships with partners to manage expectations through trust and communication.
  • You have begun to uplift our security capabilities across multiple departments through collaboration and education.
  • You understand our needs and are looking for opportunities to improve and uplift capabilities to meet goals.

What else you can expect from us...

  • We're a people-first type of place and we're led by our values in everything we do - Caring, Honest, Intelligent and Nimble (CHIN).
  • We've transitioned to a hybrid model and our Camberwell office is now open and available to those who'd like to use it.
  • When in the office, you can enjoy free parking, unlimited coffee from our in-house espresso machine and drink it in alongside an outstanding view of the city from our outdoor deck.
  • Our share the success bonus scheme is a wonderful way to celebrate our success each year. We also offer generous leave options, an individual training budget and a super flexible environment.
  • We're also open to alternative working arrangements you might appreciate, so please don't hesitate to highlight this during your application.
Our commitment to you...
Our hiring process lets you show off the very best version of yourself while learning all about us at the same time. Our pinky promise is a candidate experience that’s enjoyable, thorough, and fair. That’s our way of inspiring the world's brightest minds to become PaperCutters.
As an equal opportunity employer that values diversity and inclusion, we proudly encourage people from all walks of life to apply (even tea drinkers).
PaperCut is a proud 2022 Circle Back Initiative Global Employer – we commit to respond to every applicant.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Application security Incident response MITRE ATT&CK Security assessment Vulnerabilities

Perks/benefits: Career development Equity Flex hours Flex vacation Salary bonus Unlimited paid time off

Regions: Asia/Pacific Europe
Country: Australia
Job stats:  16  5  0

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.