Sr. / Principle Application Security Engineer

Apply Refer a friend
Our Vacancie

Location:

🇹🇷Turkey

Partner:

Zoola

Technologies:

Security

Seniority:

Senior
  • Overview

    Join leading company in AV technology, and play a crucial role in enhancing the security posture of our products. As a Senior Application Security Engineer, you will be at the forefront of defining and implementing Secure Software Development Lifecycle practices across the majority of technology projects. Your responsibilities include embedding application security into the software delivery lifecycle, hypothesizing threats, and championing secure implementation efforts. 

    Collaborate with cross-functional teams to drive positive changes, improve secure coding practices, and lead complex application security reviews. Scale application security through the development of automated testing and centralized security libraries. Your expertise in identifying security issues, strong communication skills, and ability to mentor team members will be instrumental in ensuring end-to-end security across products. 

    If you are a self-motivated individual with a passion for advancing secure coding practices, we invite you to contribute to our mission of delivering secure and innovative solutions.

  • Responsibilities

    • Define and implement Secure Software Development Lifecycle practices for technology projects to mitigate application security risks.
    • Embed application security into the software delivery lifecycle, utilizing various methodologies and tool sets.
    • Ensure end-to-end security by guiding development teams in risk remediation and championing secure implementation efforts.
    • Enhance secure coding practices, application security requirements, automation, and metrics.
    • Drive initiatives in the bug bounty program, positioning as a leading authority.
    • Lead positive cross-functional changes within the Security organization, collaborating with product development and solution teams.
    • Train and educate developers in secure coding techniques, enabling self-service through supporting toolsets.
    • Drive complex application security reviews and threat modeling, providing expert guidance.
    • Scale application security by developing automated testing and centralized security libraries, facilitating secure code writing.
    • Exhibit highly effective communication, influencing, and negotiating skills, while providing mentorship and support to the AppSec team.
  • We require

    • Expertise in identifying security issues through code review.
    • Exceptional written and verbal communication skills for clear articulation of complex topics.
    • Familiarity with security libraries and tools, including static analysis, proxying, and penetration testing.
    • Ability to explain and address common security flaws, such as OWASP Top 10 and CWE 25.
    • Proficient in presenting and communicating security threats and risks to diverse audiences.
    • Basic understanding of network and web protocols (TCP/IP, UDP, HTTP, HTTPS).
    • Strong experience with common security libraries, controls, and flaws.
    • Proven track record of working closely with developers.
    • Strong development or scripting experience with a significant contribution to product security.
    • Proficiency in written and spoken English at least on B2 level.

Join our team!

Send us your CV and we will contact you as soon as possible.

X

okYour message is sent. Thank you for contacting us, we will get in touch with you soon.

*mandatory fields
Upload CV*
Please add your CV