Security Engineer
<div class="show-more-less-html__markup show-more-less-html__markup--clamp-after-5 relative overflow-hidden"> Imagine actively contributing to the security and reliability of applications, protecting the data of over 1,000,000 office users. In the Web-App Security domain, you'll solve exciting, challenging problems, constantly learn new technologies, and develop valuable skills in an increasingly crucial field.<br/><br/>We're working with a leading German group that provides innovative software solutions for business management, financial services, and educational content, helping over 400,000 small and micro-businesses across Germany succeed.<br/><br/>The Role<br/><br/><ul><li> Directly impact and improve application security, making a product used by hundreds of thousands of businesses more secure daily.</li><li> Collaborate closely with feature teams on security issues during conception, implementation, and operation, diving deep into technical matters.</li><li> Develop and maintain cross-team security mechanisms.</li><li> Explore, build, and actively shape new ideas within the Security Enablement Team, with opportunities like Hacking Days and after-work sessions.</li><li> Work in a modern, agile environment utilizing DevOps, Scrum, or Kanban methodologies.<br/><br/></li></ul>What You'll Need<br/><br/><ul><li> Strong knowledge and extensive experience in web application and cloud security (preferably AWS).</li><li> Expertise in securely configuring, building, and releasing modern web applications (IaC, CI/CD, SDLC).</li><li> Ability to assess vulnerabilities in the context of applications and develop recommendations, leveraging knowledge of Java web applications and JavaScript (TypeScript) web clients.</li><li> Understanding of common dependency management tools like NPM and Gradle.</li><li> Development experience and capability to write Bash, Python scripts, or other necessary tools for automation.</li><li> Familiarity with Threat Models and enthusiasm for collaboratively designing them, including the ability to think like an adversary to identify threats.</li><li> Excellent communication skills to convey vulnerabilities and security recommendations clearly and precisely to feature teams.</li><li> Very good German (C2+) and English language skills are essential.<br/><br/></li></ul>What's On Offer<br/><br/><ul><li> Direct impact on the security of widely used applications.</li><li> Opportunities to work with new technologies and develop valuable skills.</li><li> A collaborative and agile work environment with dedicated security experts.</li><li> Flexible working arrangements, including remote options.<br/><br/></li></ul>Apply via Haystack today!<br/><br/> </div>