Application Security Engineer

2 Weeks ago • 2 Years +

Job Summary

Job Description

As an Application Security Engineer, you will be crucial in ensuring the security of applications throughout the SDLC. You will partner with product teams to identify, analyze, and mitigate security vulnerabilities, contributing to the creation of trustworthy products. The role involves planning, designing, implementing, and supporting AppSec tools, contributing to secure code development, assessing products, managing bug bounty programs, and collaborating with Dev/QA teams. The goal is to deploy secure software without bottlenecks and fix discovered vulnerabilities.
Must have:
  • 2+ years of experience in information security.
  • Knowledge of secure development processes and best practices.
  • General web application security knowledge.
  • Practical knowledge of common web application vulnerabilities (OWASP Top 10).
  • Knowledge of secure system/application architecture.
  • Understanding of modern threats to high-performance web applications.
  • Practical, hands-on experience in security assessments.
  • University degree in Computer Science or related field.
Good to have:
  • Passion for programming.
  • Technical knowledge of network and operating systems security.
  • Hands-on DevSecOps experience.
  • Participation in bug bounty programs and/or CTFs.
  • Deep knowledge of SAST/DAST tools, including customization.
  • Relevant certifications (i.e., OSWE, GWEB, etc.).
Perks:
  • Full-time remote work and flexible working hours
  • Comprehensive Mental Health Programme
  • Private insurance
  • Sports program compensation
  • Free online English lessons
  • An additional 1 Day off per calendar year
  • Generous referral program
  • Training, internal workshops, and participation in international professional conferences and corporate events

Job Details

Overview:

SOFTSWISS continues to expand the team and is looking for an Application Security Engineer. We need a true, experienced, and accomplished professional who shares our culture and values.

Our goal is to make sure that we deploy secure software to production without unnecessary bottlenecks, that applications are properly hardened, and security vulnerabilities, once discovered, are fixed by the developers.

As an Application Security Engineer, you will play a crucial role in ensuring the security of our applications throughout the entire software development lifecycle (SDLC). You will partner closely with the product teams to identify, analyze, and mitigate security vulnerabilities, contributing to the creation of trustworthy and robust products.

Security Team:

SOFTSWISS Security Team takes care of iGaming services protection, data privacy, and business continuity to ensure that nothing distracts satisfied customers from using our products. We work closely with the IT team that develops and supports our services, and together we create genuinely excellent and secure iGaming products.

Key responsibilities:

  • Plan, design, implement, automate and (if you wish) support AppSec tools.
  • Contribute to building a company-wide processes for secure code development and deployment.
  • Assess products and new features through risk assessment, threat modelling and manual security testing with white box approach.
  • Triage identified security vulnerabilities, provide clear and actionable descriptions and ensure these findings are properly addressed and mitigated.
  • Manage the bug bounty program, collaborate with researches and internal teams to resolve the discovered vulnerabilities.
  • Partner with Dev/QA teams throughout a development lifecycle to enhance the security posture of the application by providing expert consulting, knowledge sharing and clear security requirements.

Requirements:

  • 2+ years of experience in the information security field, with at least 2 years of experience in application security.
  • Knowledge of secure development processes and best practices.
  • General web application security knowledge (i.e., how the web actually works? what is SOP, and why do we need CORS? what is CSP?).
  • Practical knowledge of common web application vulnerabilities (i.e., OWASP Top 10), and how to detect and prevent them.
  • Knowledge of secure system/application architecture and design principles.
  • Understanding of modern threats to high-performance web applications that is used by millions of users daily.
  • Practical, hands-on experience in security assessments (penetration testing and code review).
  • University degree in Computer Science, Information Security, or related field, or equivalent combination of education and experience.
  • Intermediate or higher English level.

Nice to have:

  • Passion for programming.
  • Technical knowledge of network and operating systems security.
  • Hands-on DevSecOps experience.
  • Practice of participation in bug bounty programs and/or CTFs.
  • Deep knowledge of SAST/DAST tools, including customisation.
  • Relevant certifications (i.e., OSWE, GWEB, etc.).

What we offer:

  • Full-time remote work opportunities and flexible working hours
  • Comprehensive Mental Health Programme
  • Private insurance
  • Sports program compensation
  • Free online English lessons
  • An additional 1 Day off per calendar year
  • Generous referral program
  • Training, internal workshops, and participation in international professional conferences and corporate events

About us:

SOFTSWISS is an international company, and an iGaming software expert. We don’t only follow iGaming market trends, we create them! SOFTSWISS is a recognised industry leader in iGaming software solutions development, covering almost all aspects of the iGaming industry. The company has an international team and an official presence in several countries. Projects powered by SOFTSWISS receive numerous awards and accolades from industry media.

Our mission:

Changing the iGaming industry through technological innovation.

SOFTSWISS in numbers:

  • 2009 - foundation year
  • 2000+ total employees worldwide
  • 5 offices, countries: Poland, Georgia, and Malta
  • No. 1 provider in Crypto iGaming
  • 7 proprietary products
  • 800+ brands using our software
  • 11 B+ € bets processed per month
  • 6 M+ active players monthly

Similar Jobs

Fluence - Battery Designer

Fluence

Houston, Texas, United States (Hybrid)
4 Months ago
Fluence - Project Manager - NPI

Fluence

Houston, Texas, United States (Hybrid)
5 Months ago
Meet Elise - Senior Revenue Operations Manager

Meet Elise

New York, New York, United States (On-Site)
1 Week ago
Every matrix - Game Developer (Slots, Pixi.js)

Every matrix

Stockholm, Stockholm County, Sweden (Hybrid)
4 Months ago
Entain - Multiple Senior iOS Engineers

Entain

Australia (Remote)
1 Month ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

PwC - Credit Risk & IFRS 9 Manager

PwC

Bucharest, Bucharest, Romania (On-Site)
7 Months ago
Canva - Senior Computer Vision Engineer - Photo AI

Canva

Vienna, Vienna, Austria (Remote)
2 Months ago
Cirrus Logic - Senior CAD Software Engineer

Cirrus Logic

Austin, Texas, United States (Hybrid)
1 Day ago
Lunar animation studios - PREVIS/LAYOUT ARTIST

Lunar animation studios

Sheffield, England, United Kingdom (On-Site)
1 Week ago
ByteDance - Software Engineer - Spatial Web

ByteDance

San Jose, California, United States (On-Site)
4 Weeks ago
sitecore - License Compliance Manager

sitecore

Kuala Lumpur, Federal Territory Of Kuala Lumpur, Malaysia (On-Site)
2 Months ago
Flow - Senior/Staff Web Engineer

Flow

Palo Alto, California, United States (Hybrid)
7 Months ago
Affinidi - Engineering Manager, Full Stack

Affinidi

Berlin, Berlin, Germany (Hybrid)
1 Week ago
Netflix - Full-Stack Engineer (L5)

Netflix

Warsaw, Masovian Voivodeship, Poland (On-Site)
4 Weeks ago
In mobi - Senior Product Analyst

In mobi

Bengaluru, Karnataka, India (On-Site)
2 Weeks ago

Get notifed when new similar jobs are uploaded

Jobs in Worldwide

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!