-
1. Data: 2021-06-04 10:45:04
Temat: Kraków => Product Security Engineer <=
Od: TeamQuest Sp. z o.o. <n...@T...PL>
Our client is a global leader in the media sector, serving passionate
fans around the world with content that inspires, informs and
entertains. They delivers over 8,000 hours of original programming
each year across deeply loved content genres.
The world is changing all around us. To continue to grow as a business
over the next years we must look ahead, understand the changing
trends and be prepared for that what's to come. We must get
ready for tomorrow today. Join us to be part of the adventure.
Client inspires people to be the best they can.
Currently in Poland we are looking for passionate people with various
backgrounds to join our team in the fields of FP&A Centre of
Excellence, Global Business Services, HR Services and Media
Business.
*****
***** Product Security Engineer
*****
***** Job description:
* Run, maintain, and utilize security tools for the Appsec program,
e.g., static and dynamic code analysis tools.
* Create and run secure code assessments with various application and
services engineering teams.
* Perform manual and automated penetration tests and retests of web
and mobile applications.
* Review technical architecture and delivery for Web and other Client
Delivery Platforms.
* Review current system security measures and recommend or implement
enhancements.
* Review and contribute to application designs and solutions.
* Review developers codes, provide feedback and perform security
assessments for consumer-facing applications, services and future
technology.
* Triage risk of identified vulnerabilities and findings.
* Work with external penetration testers, oversee ongoing pentests and
exercises, work with application engineering teams on remediation
of found vulnerabilities.
* Participate (as a subject matter expert) in information security
operations duties, including occasional incident response
escalations.
* Evaluate, deploy and support application security technologies,
processes and workflows on multiple platforms (Server, Client,
Mobile, Tablet, etc.).
* Identify and define application security requirements and security
baselines.
* Work collaboratively and proactively across the organization (e.g.,
Technical Architects, Engineering Leads, Product managers, etc.)
to support and remediate security gaps.
***** Must have:
* 3+ years of product/application security work experience.
* Knowledge of common security principles for web application
architectures.
* Experience in code reviews, business logic assessment, and
application security testing.
* Solid understanding of security protocols, cryptography,
authentication, authorization and security.
* Broad knowledge of Security technologies, process, and techniques
and a strong understanding of application security leading
practices including OWASP and CWE.
* Familiarity with HTML\CSS, JavaScript and UI\UX design and software
quality assurance principles
* Hands on experience working with DevOps and Agile driven product
teams.
* Familiar with application security tools like BurpSuite Pro, SAST,
DAST, nmap, Metasploit, and Kali Linux.
* Knowledge of practical threat modeling for consumer applications.
* Experience in secure software development principles in various
languages (Java, Go, JavaScript, Python, etc.).
* Excellent communication and presentation abilities with great
attention to detail.
* Demonstrated ability to explain risks and vulnerabilities to both
technical and non-technical audiences.
* Languages: Fluent English and Polish.
***** Good to have:
* Bachelor's degree in IT, Computer Science or Information Security
preferred.
* Knowledge of cloud security principles.
* Experience in application/tool development with at least one modern
programming language.
***** Benefits offered:
* Employment based on employment contract
* Opportunities for professional development for expert positions
* Experience in an international company
Aplikuj tu / Send your CV:
=> => =>
http://TeamQuest.pl/n/48321-n?utm_source=nntp&utm_me
dium=cron&utm_campaign=2106
=> => =>
W przesłanych materiałach prosimy o dopisanie klauzuli
następującej treści:
Wyrażam zgodę na przetwarzanie moich danych dla potrzeb tej i
kolejnych rekrutacji (zgodnie z ustawą o ochronie danych
osobowych z dnia 29 sierpnia 1997 roku t.j. Dz.U.2016 poz. 922).
Jednocześnie wyrażam zgodę na udostępnienie moich danych
osobowych potencjalnym pracodawcom.
Potwierdzam prawdziwość powyższych danych i zgadzam się na
przetwarzanie i administrowanie moimi danymi, które podałem/am
do wiadomości TeamQuest Sp. z o.o. z siedzibą w Warszawie 00-814
Warszawa ul. Miedziana 3A lok. 21 do celów rekrutacji
pracowników. Jednocześnie oświadczam, że zostałam/em
poinformowana/y iż administratorem moich danych jest TeamQuest
Sp. z o.o. z siedzibą w Warszawie 00-814 Warszawa ul. Miedziana
3A lok. 21 oraz że moje dane mogą zostać przekazane
potencjalnym pracodawcom oraz, że mam prawo dostępu do treści
swoich danych, prawo ich poprawiania, prawo sprzeciwu wobec ich
przetwarzania w wyżej opisanym celu oraz wobec przekazywania
danych innym podmiotom, a także prawo zażądania zaprzestania
przetwarzania moich danych osobowych ze względu na moją
szczególną sytuację. Podanie danych jest dobrowolne.
Jednocześnie wyrażam zgodę na podejmowanie czynności mających
na celu weryfikacje prawdziwości przekazanych przeze mnie
dokumentów i informacji w nich zawartych.
--
Pozostałe oferty:
https://teamquest.pl/praca-w-it/
ID=85951d5458f007282332530fab345af8