Application Security Engineer | Senior
PLN 206,400-360,000 per year
Used Tools & Technologies
Not specified
Required Skills & Competences
Tag name is followed by "@" symbol and proficiency level value.
About proficiency levels:
- 1-2 — basic awareness. Minimal hands-on experience, and a rudimentary understanding of the technology's purpose;
- 3-6 — daily use. Comfortable and regular usage, capable of handling common tasks and challenges related to the technology;
- 7-9 — you are an expert, you can teach others, you know all the pitfalls and tricks;
- 10 — exceptional knowledge, comprehensive understanding, and adeptness in all aspects of the technology, including advanced problem-solving. Think twice before claiming or demanding such level.
Security @ 4
Linux @ 4
Communication @ 4
Android @ 4
Reporting @ 4
iOS @ 4
macOS @ 4
- 1-2 — basic awareness. Minimal hands-on experience, and a rudimentary understanding of the technology's purpose;
- 3-6 — daily use. Comfortable and regular usage, capable of handling common tasks and challenges related to the technology;
- 7-9 — you are an expert, you can teach others, you know all the pitfalls and tricks;
- 10 — exceptional knowledge, comprehensive understanding, and adeptness in all aspects of the technology, including advanced problem-solving. Think twice before claiming or demanding such level.
Details
At Nord Security, we’re creating a safer cyber future.
We help people and businesses take back control of their online security, privacy, and data. From VPNs to password managers, threat intelligence to eSIMs for travel—our teams turn complex problems into solutions trusted by millions worldwide.
Life is online. In this role, you’ll help people own it.
Responsibilities
- Ensure software design security and define secure implementation practices by syncing with teams responsible for the actual product development.
- Ensure that security-related communication between technical teams involved in releasing the product is smooth (act as a “glue” between all teams so everyone’s on the same page).
- Plan and manage development of security tools within the team.
- Create tasks for the product's security reviews (SAST/DAST/SCA results, application security testing, etc.).
- Cooperate with product teams to learn about changes introduced into the product early to make educated security decisions.
- Ensure mobile/desktop applications and browser extensions are sufficiently tested.
- Support internal and external audits.
- Design and deliver training for security engineering awareness & adoption.
- Actively look for internal security gaps within the product or organization overall.
- Address security questions and give advice regarding the direction of the product's security.
Requirements
- Proven experience in mobile/desktop applications security assessment: planning, testing, methodologies, and vulnerability reporting.
- Good understanding of how networks work (OSI and TCP/IP models) with a particular focus on VPNs.
- Experience working with stakeholders to define the scope of security tests and identify remediation actions to address any vulnerabilities identified.
- Knowledge of secure coding practices.
- Sense of ownership with strong problem-solving and investigation skills.
- Experience with different OS (Linux, Android, iOS, macOS, Windows) security topics.
- Ability to build and maintain relationships, influence key stakeholders across the business.
- Ability to make product-related business decisions based on threats and vulnerabilities affecting it.
- A healthy dose of assertiveness combined with an ability to compromise.
Additional information
- Team: Cybersecurity - NordVPN
- Department: NordVPN
- Location: Warsaw, Poland
- Workplace: Hybrid
- Commitment: Full Time
Salary
17,200 - 30,000 PLN gross/month