Senior Application Security Engineer / Penetration Tester

Senior Application Security Engineer / Penetration Tester

JR-122668

Warsaw

Product

Full time

Senior Application Security Engineer / Penetration Tester

Team and job description

Equinix is the leading global interconnection platform, accelerating business performance
by connecting companies to their customers and partners inside the world’s most networked data centers. More than 4,500 of the world’s most demanding customers trust us to provide a place where they can run their mission-critical applications and grow their businesses. Our dream is to interconnect the world – and create a historically significant company in the process. To accomplish the vision Equinix has full automation for clients and needs secure products. The Product Security team is to make those products secure and help development teams making top level, secure applications. We are looking for penetration tester to perform web and API security tests and help with automation of security in the products.

Job Profile Summary

As a Security Engineer in Product Security Team, you will be not only performing penetration tests and auditing the applications, but also work with great team to ensure developers have all possible solutions and knowledge to make better and more secure applications.

Main responsibilities

• Performing manual penetration testing for our products (web and API)
• Defining rules and quality gates for SAST, DAST, audits
• Performing a threat modeling and review for new features
• Analysing and retesting findings from SAST and DAST
• Recommending security controls for the environment based on the findings after the tests
• Providing remediations and advices for the team
• Providing and/or recommending security training for the team based on findings
• Writing automated security tests
• Preparing security guidelines

Qualifications

• BS in computer science or equivalent with 5+ years or MS in computer science or equivalent with 3+ years of hands on professional experience
• Solid understanding of application security, protocols, cryptography
• Excellent working knowledge of current IT risks and experience implementing security solutions
• Ability to interact with a broad cross-section of personnel to explain and enforce security measures
• Experience in performing software threat analysis, security analysis and risk analysis
• Knowledge of any programming language
• Knowledge of scripting languages

Will be a plus

• Experience with containerised apps
• Previous experience as developer
• Any reported CVE(s) will be a big plus
• Security certifications will be taken as a plus
• Experience with cloud
• Experience with mobile application security testing and planning

Successful candidate will

• Be a talent multiplier who gets the team around them to excel
• Be persistent, creative and driven to get results relentlessly
• Exhibit a strong backbone to challenge the status quo when needed
• Exhibit a high level of curiosity, keeping abreast of the latest trends & technologies, liking the research and finding new vulnerabilities
• Show pride of ownership and strive for excellence in everything undertaken
• Be energized by a diverse and constantly evolving environment
• Enjoy opportunities to learn new skills

What we offer

• Full-time job agreement
• Competitive salary and benefits (including stock options plans, VIP medical coverage)
• Pre-paid lunch cards
• Employment in a stable company with an established position in the market;
• International business travels for trainings
• Training package to further master your hard as well as soft skills
• Office in Warsaw city centre

Prosimy powołaj się na portal Mamo Pracuj składając aplikację

Equinix is the world’s digital infrastructure company, operating 210 data centers across the globe and providing interconnections to all the key clouds and networks. Businesses need one place to simplify and bring together fragmented, complex infrastructure that spans private and...