Insider.
Online Marketing • Predictive Analytics • Web Personalization • E-commerce • Mobile Platforms
1001 - 5000
💰 $121M Series D on 2022-02
Security Engineer - Red Team
September 11
Insider.
Online Marketing • Predictive Analytics • Web Personalization • E-commerce • Mobile Platforms
1001 - 5000
💰 $121M Series D on 2022-02
Description
• Perform web, mobile application, and internal penetration tests. • Support blue teams when needed. • Research new attack vectors and stay current with cybersecurity news and trends. • Train Quality Assurance and Development teams in standard security testing techniques and secure software development.
Requirements
• 2+ years of working experience in web application security. • Hands-on experience in security testing of Web applications, Web service, Mobile applications, APIs, etc. • Experience securing REST APIs and web services. • Experience using and implementing SAST / DAST tools such as Fortify, Veracode, Checkmarx, or other similar tools. • Conducting penetration tests of information systems using commercial and open-source exploitation tools. • Good understanding of standard security vulnerabilities and common remediation as published by OWASP, SANS, etc. • Experience working with secure coding methodology and best practices and their implementation within engineering teams. • Support developers of our business units in their SDLC and provide guidance regarding mitigations to emerging threats. • Review application source code based on static application security testing tools. • Engage in security research to remain current on vulnerabilities and testing tools. • Create detailed, professional documentation/reports that clearly communicate vulnerabilities, mitigation strategies, and remediation steps. • Ability to work on multiple projects concurrently and be committed to providing exemplary customer service. • Strong written and verbal communication skills in English. • Python, Javascript, PHP programming experience as a plus. • Knowledge in scripting (any language) and experience in automation scripts for application security testing as a plus. • Familiarity with cloud security, particularly AWS Security concepts as a plus. • Certifications of eWAPTx, OSCP, OSWE, etc. as a plus. • Ability to work in a team-centric environment. • Strong critical thinking and analytical skills. • Experience in executing white, gray, or black box security posture assessments and complete detailed reports that outline the findings and recommendations. • Strong presentation, written, and oral communication skills.
Benefits
• Tech Talks with famous and groundbreaking people from the software world. • Dev Talks where our Software Developers talk about their career steps. • Hackathons we organize inside that push the boundaries. • Free access to exclusive services such as Laracasts, Egghead, LinkedIn Learning, Blinkist, Masterclass, and Spotify. • Inclusive Private Health Insurance. • Smart Work Model side benefits to support food and bill expenses. • The infamous Team Activities that are bursting with fun. • No Dress code! This is a fast and innovative startup, you can wear whatever you want. • Remote Work! Work anywhere you'd like in Turkey.
Apply Now