Application Security Engineer

Join Veeam as an Application Security Engineer to enhance the security of Veeam products, contributing to data protection and business resilience. This role involves conducting security assessments, vulnerability scanning, and penetration testing of products and services. You will integrate secure development practices into the software development lifecycle, collaborate on security design, perform threat modeling, and conduct manual source code audits using automated analysis tools. This position is crucial for maintaining the integrity and security of Veeam's offerings, ensuring robust data resilience for over 550,000 customers worldwide.

Must Have

• Conduct regular security assessments, vulnerability scanning, and penetration testing of Veeam products and services
• Work with development teams to integrate secure development practices into the software development lifecycle
• Collaborate on the design and implementation of security within Veeam products
• Threat modelling and design reviews for new and existing Veeam products
• Conducting manual source code security audits
• Using automated application-analysis tools
• Ability to read source code on programming languages (such as C/C++/C#/JavaScript)
• A good understanding of the principles of secure software development
• English proficiency for daily communication within international teams

Good to Have

• Knowledge of scripting languages (Python, PowerShell, Bash, Ruby, etc.)
• Knowledge of modern cryptographic algorithms
• Experience with DAST and SAST tools
• Skills using OWASP ZAP, Burp Suite, Kali Linux tools
• Certifications such as OSCP, CEH, CSSLP, CCSP, AWS Certified Security, etc.
• Familiarity with cloud platforms (such as AWS/Azure/GCP)
• Experience playing CTF
• Experience with HackTheBox
• Experience with bug bounty hunting

Perks & Benefits

• 26 paid days off annually plus three global VeeaMe Days for self-care and paid volunteer time
• Paid parental, maternity, and paternity leave
• Fully covered family medical plan, dental, rehab, and vaccinations
• Life, critical illness, and disability insurance
• Employer pension contribution via PPK
• Monthly lunch and wellness benefits
• Six free therapy sessions, plus legal and financial advice
• Professional training and education, including courses and workshops, internal meetups, and unlimited access to our online learning platforms (LinkedIn Learning, Athena, O’Reilly) and mentoring through our MentorLab program

About the Role

Join us as an Application Security Engineer and help shape the security of Veeam products, enhancing data protection and driving business resilience.

What You’ll Do

• Conduct regular security assessments, vulnerability scanning, and penetration testing of Veeam products and services
• Work with development teams to integrate secure development practices into the software development lifecycle
• Collaborate on the design and implementation of security within Veeam products
• Threat modelling and design reviews for new and existing Veeam products
• Conducting manual source code security audits
• Using automated application-analysis tools

What You’ll Bring

• Ability to read source code on programming languages (such as C/C++/C#/JavaScript)
• A good understanding of the principles of secure software development
• A desire to develop in the field of application security
• A lively and flexible mind, clear logic, and analytical skills
• The desire and ability to work as part of a team
• English proficiency for daily communication within international teams

Bonus Skills

• Knowledge of scripting languages (Python, PowerShell, Bash, Ruby, etc.)
• Knowledge of modern cryptographic algorithms
• Experience with DAST and SAST tools
• Skills using OWASP ZAP, Burp Suite, Kali Linux tools
• Certifications such as OSCP, CEH, CSSLP, CCSP, AWS Certified Security, etc.
• Familiarity with cloud platforms (such as AWS/Azure/GCP)
• Experience playing CTF
• Experience with HackTheBox
• Experience with bug bounty hunting

What You’ll Get

• 26 paid days off annually plus three global VeeaMe Days for self-care and paid volunteer time
• Paid parental, maternity, and paternity leave
• Fully covered family medical plan, dental, rehab, and vaccinations
• Life, critical illness, and disability insurance
• Employer pension contribution via PPK
• Monthly lunch and wellness benefits
• Six free therapy sessions, plus legal and financial advice
• Professional training and education, including courses and workshops, internal meetups, and unlimited access to our online learning platforms (LinkedIn Learning, Athena, O’Reilly) and mentoring through our MentorLab program

Please note: If the applicant is permanently present outside of Poland, Veeam reserves the right to refuse to consider the application for a job. Remote job is only possible in case the employee is located in Poland.

#LI-AR1

#Remote