🛡️ About the Role
As a Security Engineer, you will help identify and address security weaknesses across our applications, systems, and cloud infrastructure.
You'll focus on penetration testing, vulnerability assessments, and developing tools to automate security testing — ensuring our platform remains resilient against evolving threats.
🔧 What you’ll do
Application Security & SDLC
Assist in integrating AppSec tools into CI/CD (SAST, SCA, DAST, secret scanning, dependency checks).
Implement lightweight automation to improve developer security feedback loops (shift-left).
Support secure code review and help maintain application security guidelines.
Participate in threat modeling sessions and identify security gaps in new features.
Security Automation & Tooling
Design and develop automated tools/scripts supporting AppSec workflows (e.g., scanning orchestration, auto-reporting, API security checks).
Build automation to support pentesting tasks:
Recon automation
Endpoint/parameter discovery
Fuzzing helpers
Log & traffic analyzers
Familiarity with open-source security tools and prototype enhancements for internal use.
Pentesting & Vulnerability Analysis
Conduct penetration testing on web apps, APIs, and cloud-based systems.
Assist in vulnerability assessments, reproduce findings, and coordinate remediation.
Monitor emerging techniques and contribute ideas to improve testing methodologies.
✅ Must-Have
Clear interest and long-term orientation toward Application Security.
1+ year of experience in penetration testing, vulnerability analysis, or code-level audits
Familiarity with OWASP, static/dynamic analysis tools, and common security testing utilities