Our client has a global team of approximately 25 security engineers, researchers, analysts, and awareness specialists in all aspects. They are on the look-out for an Application / Product Security Engineer to join their expanding team.

Responsibilities:

• Create, advocate and hands-on implement an IT security vision, strategy, and roadmap that keeps our business secure, competitive, and proactive. If you do not have the technical skills for the hands-on part, do not apply for this position.

• Achieve and maintain level 4 in both the security maturity model and the security awareness maturity model. Think of incredibly cool projects and devious security awareness exercises!

• Work very closely with your counterparts in IT Administration, Disaster Recovery, IAM, DevOps, WinOps and IT Development to ensure that IT Security becomes part of the DNA of everything our client does.

Skills / Experience Required:

• 10+ years of experience in security programs and teams in a mid-to-large-sized company.

• Extensive hands-on experience with cloud infrastructure, automation, containerization, DevSecOps, virtualization, etc.

• Real-world experience with penetration testing (white box, black box, and grey box). Ideally, you have been a bug bounty hunter in a past life.

• You can hold your ground during code reviews, and you are very familiar with secure coding practices.

• Broad knowledge about social engineering threats and tests (phishing attacks, tailgating, dumpster diving, endpoint security, etc.)

• Exposure to compliance and regulatory frameworks (e.g., SOX, NIST, ISO 27001, PCI DSS)

• Excellent written and spoken English communication skills.

If this sounds like you, submit an application today!