Security Engineer, Product Security
Good work/life balance
Multinational E-commerce company
Review proposed architecture, such as infrastructure or information flows, and proposes a set of security controls in order to minimize risk.
Review source code to find security bugs and coding errors.
Conduct vulnerability assessments and penetration testing on Web, API, iOS and Android Applications.
Automate security checks and tests so that they can be easily and transparently plugged into the current CI/CD pipelines.
Develop technical solutions to help mitigate security vulnerabilities.
Maintain technical & security standards for web application and mobile application technologies.
Educate developers on secure coding practices with workshops, talks, and lessons.
Evaluate and investigate suspected security events/incidents and perform remediation in accordance with Incident Response plan/procedures.
Collaborate with information security officers, legal team, and internal auditors on technical security matters.
Bachelor's degree or equivalent practical experience.
2+ years of experience analyzing the security of systems (penetration testing, Web Application security testing, vulnerability scanning, threat modeling, etc.).
Good understanding of modern web application architecture, HTTP, TCP/IP, and standard network and system security technologies.
Familiar with software development tools, such as version control system, integrated development environment (IDE), and CI/CD tools.
Strong teamwork skills in a diverse environment