Application Security Engineer- София

Описание

Paysafe Limited (“Paysafe”) (NYSE:PSFE) (PSFE.WS) is a leading specialized payments platform. Its core purpose is to enable businesses and consumers to connect and transact seamlessly through industry-leading capabilities in payment processing, digital wallet, and online cash solutions.

Paysafe Group, a leading global provider of online payment solutions, is currently seeking a highly motivated and talented an Application Security Engineer to join the Information Security team.

The potential candidates need to be able to work in a global team environment (NA, EU, India), have prior experience developing Enterprise Applications as well as clear understanding of Application security threats and vulnerabilities and how to treat them. The type of applications in focus range from web services, microservices, to mobile or cloud applications. The role will be responsible for insuring that security is embedded in SLDC in all its phases to promote Secure SDLC. The role will also be responsible for helping remove friction in the security ecosystem via automation and tooling for project teams. The Application Security Engineer will provide expert technical guidance and hands on validation of secure solutions during the design, development, and testing of systems owned by and supporting Paysafe Group.

The candidate should be a fast learner with the ability to refine their skills and contribute towards enabling the Information Security team deliver operational security to improve Paysafe security posture.

What you will do:
Perform security related design and implementation reviews and risk analysis for the platform
Automate to improve the abilities of other engineers to develop and maintain secure code
Find and remediate security flaws across the software stack using penetration testing, vulnerability scanning and source code reviews.
Engineer security solutions to protect systems, applications and project infrastructure.
Coordinate with researchers and in-house developers, on our bug bounty program to analyse rank and remediate exposed vulnerabilities
Consult across teams on secure architecture design and implementations
Propose, evaluate and build innovative new security features to benefit our organization
Assist with security incident response as needed
Train other developers to help them build more secure products
Work with external pen testers to continually improve security on the platform
Develop technical documentation, including functional specifications, system design specifications and Standard Operating Procedures (SOPs) as necessary.
Perform validation of security controls to insure adherence with compliance and industry best practices.
Application logs monitoring and source code audits to validate and ensure sensitive data protection.

To be successful you need to have:
Bachelor’s Degree in computer science or similar experience for Code Remediation and Application Security as typically expected for Application Security Specialists.
Three or more years of experience in development
Three or more years of experience in performing vulnerability assessments applying Information Security best practices to Information Technology assets is a plus.
Experience in penetration testing tools any of the following: Metasploit, Burp Suite Pro, etc. is a plus.
Experience with static and dynamic vulnerability identification using industry leading scanning tools and manual code reviews.
Experience with the Top 10 OWASP Open Web Application Security Project vulnerabilities most critical web vulnerabilities and how to identify and remediate them.
Previous Secure Development Lifecycle or Application Assessment experience.
Understanding of the principles of continuous delivery and the role of Information Security within it
Hands-on experience with automation of system and application level scanning tools.
Experience in working with pen-testers and ability to interpret security defects to developers/engineers and their leaders.
Excellent analytical skills, attention to detail and ability to methodically troubleshoot complex issues.
Solid understanding of Information Security in general and the specific behaviours that would secure Paysafe’s information assets and intellectual property.
Analyse work group systems and recommend solutions. Ability to translate Information Security policies and procedures into language that a business and/or technical person can understand and ability to effectively communicate with both non-technical and technical people.
Strong problem solving with the ability to methodically and objectively analyse and resolve Information Security challenges.
Ability to work well inside and outside the team. Exchanging ideas, knowledge, experience and thoughts can boost the quality and the efficiency of the solution, so great testers must always be eager to coordinate well with their team members and other teams as well. Stakeholder management skills and experience due to the escalation process.
Willingness to learn, not afraid to explore and to take initiative

We offer in return:
The opportunity to write the history of a leading and growing multinational company;
Competitive remuneration and social benefits package (25 days annual paid leave, health insurance, sports card, team events, company discounts, variety of soft skills, business and technical training programs);
Training and support to help you get to where you want to be; this is your career, and we want to help you develop along with the team.
Be part of a highly regarded team within Information Security, with the flexibility of a start-up and access to state-of-the-art security tooling
Be part of a relatively new function, shaping the way it operates, what it produces, and the impact is has.
Working closely with other disciplines in cyber security; Threat Hunting, Threat Intelligence, Vulnerability Management and Penetration Testing included.
A friendly and collaborative work environment; we don’t judge, we don’t discriminate, and the best ideas are the ones we pursue. There are no stupid questions here and you will get support from your teammates whenever you need it.
With offices in Canada, USA, EU, India, and the UK, Paysafe Group offers individuals an opportunity to join a fast-moving global company with energy, passion and drive, committed to developing world-class online financial solutions.

We take pride in our employees and offer excellent remuneration and benefits, as well as a positive, rewarding and fun work environment.

Are you ready to take your career to the next level? Join our team that is inspired by a unified vision and propelled by passion.

Send your CV in English.

Only shortlisted candidates will be contacted for an interview.

Equal Employment Opportunity
Paysafe provides equal employment opportunities to all employees, and applicants for employment, and prohibits discrimination of any type with regard to ethnicity, religion, age, sex, national origin, disability status, sexual orientation, gender identity or expression, or any other protected characteristics. This policy applies to all terms and conditions of recruitment and employment. If you need any reasonable adjustments please let us know. We will be happy to help and look forward to hearing from you.

Изисквания към кандидата

Езикови познания:
Английски език

Трудов опит:

Образование:

Ние предлагаме

Вид заетост:

Срок на заетост:

Договор:

Ниво в йерархията:
Експертен персонал без ръководни функции

Категория:

ИТ и Компютърни специалисти

Държава:

България

Населено място:

Гр. София

Адрес:

90, Tsarigradsko Shose blvd., 1784 Sofia

Дата:

28.02.2023

Организация:

Paysafe Bulgaria EOOD
Фирма/Организация - Директно търсеща служители

Детайли за организацията:

Повече информация за Paysafe Bulgaria EOOD може да получите ТУК