Application Security Engineer

NIX Tech

Standszám:

B6

NIX, a global supplier of software engineering and IT outsourcing services, is looking for a Application Security Engineer in its office in Budapest (Vaci Greens, 13th district). You’ll be part of a team of professionals who are ready to find the best tailor-made IT solutions for their multinational clients in various industries and solve complex problems.

RESPONSIBILITIES:
Performs web and mobile applications vulnerability assessments and penetration testing activities.
Write client reports with your findings and recommendations using your top-notch English writing skills and exceptional attention to detail.
Triage SAST and DAST scans findings.
Train and educate developers and teams in secure coding techniques including use of supporting toolsets and enable them to self service.
Effectively communicate and coordinate with engineers, leads and stakeholders to deliver quality and security to the product.
Provides support to product owners in fixing vulnerabilities.
Participates in development of team processes.
Continuously develops professional knowledge and skills.

WHAT WE EXPECT FROM YOU:
3+ years of professional experience with web and mobile application security, and at least 1 year of ethical hacker/pentester experience.
Strong knowledge of web and mobile security fundamentals.
Solid knowledge of testing methodologies (OWASP WSTG/MSTG or similar application security methodologies).
Strong understanding of the most critical security risks to web applications(OWASP Top 10).
Solid knowledge of the various vulnerability types, their root cause, exploitation techniques and mitigation patterns.
Hands-on experience in web vulnerabilities finding and exploitation.
Hands-on experience in application security testing software and common penetration testing tools (Kali Linux, Burp Suite, Metasploit, Nmap (NSE), Acunetix, etc.).
Knowledge of IT technologies (network protocols, Web, clouds, operating systems, database systems).
Basic knowledge of one or more multiplatform scripting languages (eg. Python).
Experience in software development practices and methodologies (SDLC).

WILL BE A PLUS:
Programming/development experience.
Understanding and hands on experience in cloud security (AWS/Azure).
Bug bounty experience.
Relevant certifications such as OSCP, CEH, CompTIA PenTest+, etc.
Knowledge of pipeline and CI/CD principles. Embed security across the CI/CD roadmap (SSDLC).
Experience in threat modeling activities.
Awareness of privacy and security regulations and compliance frameworks.

WHAT WE OFFER:
Competitive compensation packages.
Stable employment, based on a full-time employment contract.
Private health insurance (Medicover Сlinic).
AYCM sport pass, providing discounts at various sports facilities in Hungary.
Interesting tasks and diverse opportunities for developing your skills.
Free training courses, including English.
Participation in internal and external thematic events, technical conferences.
A spacious office in the heart of Budapest (13th district).
All necessary devices and tools for your work.
Active corporate life.

Jelentkezésedet várjuk a(z) B6 standon!

Ha szeretnéd a profilodba menteni az állást, akkor lépj be, vagy regisztrálj itt.

A rendezvény főszervezője:

2024. október 2. (szerda) 10-19 óra

2024. október 3. (csütörtök) 10-17 óra

BOK "A" Csarnok

(Budapest, Dózsa György út 1 .)

Jobverse.hu @ All right reserved.