Senior Application Security Engineer
inDrive
Almaty, Kazakhstan · Georgia
Posted on Nov 5, 2024
Senior Application Security Engineer
Kazakhstan, Almaty · Cyprus · Georgia
- Hybrid
- Full-time
- Senior
We are looking for Application Security Engineer to join our team!
Responsibilities
- Conducting complex web application security audits
- Decision making at the cybersecurity architectural committee
- Interaction with development teams to fix vulnerabilities and implement new cybersecurity features
- Implementing new processes (e.g. scanning for secrets in source code, incident investigation)
- Consulting development teams on complex security issues
- Conducting investigations into cybersecurity incidents
- Conducting large-scale security awareness activities, such as CTF
- Conducting projects involving 2 or more teams, such as a hacker attack simulation
Qualifications
- A higher education in IT, ideally information security
- Knowledge of at least one high-level programming language, ideally Golang
- Understands all types of vulnerabilities (web + mobile)
- Understands the principles of the main protocols used in development and security
- Has experience of failures and lessons learned in solving all types of AppSec tasks
- Has positive experience in implementing new tools and processes
- Has high maturity, can independently plan and implement large projects
- Basic skills in infrastructure security: proxy servers, docker, k8s, CI/CD
- Knowledge of how SDLC works in practice
- Ability to write complex SQL queries to find anomalies in a database