Oferty pracy

< Back

AppSec Engineer

Salary:
1500-1700 pln/md netto+VAT
Type of employment:
B2B
Date:
2024.02.02
Location:
Warszawa
Job description

Creating an inspiring place to thrive for the talented, we use their expertise and courage to introduce the technology of the future into your business. - This is the foundation of Mindbox and the goal of our business and technology journey. We operate and develop in four areas:

🤖 Autonomous Enterprise - automation of business processes using RPA, OCR, and AI.

🌐Business Managment Systems ERP - we implement, adapt, optimize, and maintain flexible, safe, and open ERP of production and distribution companies worldwide.

🤝Talent Network - we provide access to the best specialists.

☁️ Modern Architecture - we build integrated, sustainable, and open CI / CD environments based on containers enabling safe and more frequent delivery of proven changes in the application code.

We treat technology as a tool to achieve a goal. Thanks to our consultants' reliability and proactive approach, initial projects usually become long-term cooperation. For over 16 years, it has provided various services to support clients in digital transformation.

#LI-Hybrid

 

Offer
  • Work with experienced and engaged team, willing to learn, share knowledge and open for growth and new ideas 
  • Hybrid working system (twice a month on site at the Warsaw office and remote)
  • Mindbox is a dynamically growing IT company, but still not a large one – everybody can have a real impact on where we are going next
  • We invest in developing skills and abilities of our employees
  • We have attractive benefits and provide all the tools required for work f.e. computer
  • Interpolska Health Care, Multisport, Warta Insurance, training platform (Sages) 
Tasks
  • Ensure all our cloud solutions are securely
  • Ensure our developed solutions are build safely and securely
  • Support our product end engineering teams in securely designing and developing solutions
  • Performing threat modelling
  • Implementing automated security testing as part of our pipeline
  • Testing the security of our solutions
  • Continuously improve the visibility of our risks to enable our engineering teams to prioritise and fix issues in line with our vulnerability policy
  • Support reporting of our application risk posture to stakeholders
  • Support and work with architects and the security team, exchanging knowledge and upskilling each other
  • Promote and implement new security initiatives, trial new security tools
  • Active participation in on-call rotations

Requirements
  • Experience implementing or working with security champions networks
  • Experience delivering and reporting on application vulnerability management
  • Excellent communication and influencing skills
  • Experience working in devops / agile / empowered environments
  • Excellent knowledge of application security and working with engineering teams to deliver secure solutions
  • Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, MITRE ATT&CK and NIST
  • Previous or current experience as a developer (ideally Java and / or mobile apps)
  • Experience with application security in highly regulated (e.g. banking / finance) environments
  • Experience working with multiple engineering teams / squads