Product Security Engineer
Tidio
Athens, Greece
πριν από 4 μέρες
source : Just Join IT

Securing SDLC (advanced)

DevSecOps (advanced)

Salary : up to 28 000 PLN net (B2B) up to 23 240 gross (UoP)

Location : remote work (with access to coworking spaces in your city)

We’re one of the fastest-growing IT companies in Europe. Our flagship product is a live-chat app powered by unique chatbot solutions.

As a customer experience tool, we help micro & small businesses worldwide serve their clients efficiently. We aim to develop as an organization constantly, in 2021 we were awarded a prestigious Great Place To Work certificate.

Working at Tidio means having an impact on thousands of companies and millions of their users. But our clients are not the only ones who can grow with us.

By joining Tidio, you can grow, too!

A few facts about us :

  • Every month, our widget is viewed by 510 million unique users, which is 6.2% of the global population
  • Our product is in the TOP 5 most popular live chat solutions in the world, and our goal is to become no. 1
  • Currently, we hire over 130 fantastic people, and we plan to grow the team even bigger by the end of 2021
  • We manage a data warehouse of 5TB, and it is still growing!
  • Would you like to see how working with us looks like? Check out our #GrowWithTidio video >

    https : / / youtu.be / 8xd44wCP5LI

    How we work in the Product Security team :

  • We actively support and advise our teams in producing safe growth.
  • We conduct security assessments / tests of implemented functionalities.
  • We manage the reported vulnerabilities - we make an assessment, reproduce the vulnerabilities and cooperate with developers to derive the vulnerability from the product.
  • We improve product security and software development cycle.
  • We share our knowledge with the rest of the technology team, and we build a "security culture".
  • As a Product Security Engineer you will :

  • take care of the implementation and development process of DevSecOps practices - SAST / DAST / SCA in CI / CD;
  • cooperate with other teams - build threat models and take care of a risk assessment of implemented functionalities and components;
  • identify, evaluate, reproduce and manage the vulnerabilities found in our product;
  • conduct a security assessment and penetration testing of our product;
  • develop and manage a roadmap;
  • implement processes and standards;
  • conduct lightning talks and presentations that raise awareness of application security and create a security culture.
  • You are a perfect fit if you :

  • have at least three years of application security experience;
  • understand the latest threats and issues related to the security of web applications;
  • are familiar with standards, documentation, and methodologies such as OWASP Top 10 / ASVS / SAMM / WSTG;
  • have a working knowledge of application security management gathered by implementing safe practices and creating processes;
  • have experience in implementing SAST / DAST / SCA solutions as an integral part of CI / CD;
  • can easily communicate in English;
  • are supportive, and you are a natural-born team-player.
  • You will earn extra points for :

  • experience in securing large Amazon Web Service deployments;
  • security certifications such as OSCP, GWEB, GPEN, GWAPT, CEH, CISSP, GSEC, etc.
  • We would like to offer you :

  • a real impact on the company’s growth
  • salary up to 28 000 on B2B contract or up to 23 240 PLN gross on the contract of employment;
  • work with a team that continually shares knowledge and is not afraid of testing new solutions;
  • great development opportunities company-supported courses and conferences;
  • flexible working time an optimum work-life balance is important;
  • possibility to work 100% remotely, use one of our two permanent offices (in Warsaw or Szczecin), or book a coworking space in your city;
  • 26 days off guaranteed in a year;
  • individual work tools Macbook Pro, Dell screen, JBL headphones? You can tailor your equipment to your needs;
  • mental wellbeing program individual therapy sessions and resources for employees;
  • Multisport Card or MyBenefit Cafeteria no extra charge;
  • premium medical care (Signal Iduna) no extra charge;
  • regular integration events (company-wide twice a year) and team events (every quarter);
  • discounts on Apple products;
  • budget for individual English language classes;
  • our famous bagels on your 1st day!
  • We work digitally by design but if you prefer to work from the office you can visit us at our sites in Szczecin (al. Wojska Polskiego 81) or in Warsaw (Varso Place on Chmielna 73 https : / / cic.com / warsaw )

    Don't hesitate and apply right away!

    Do you prefer to work in the office? That's also possible! In Szczecin, you can find us on al. Wojska Polskiego 81, in Warsaw we are on Chmielna 73 ( https : / / cic.com / warsaw )

    Αναφορά αυτής της εργασίας
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Εφαρμογή
    Το e-mail μου
    Πατώντας στο κουμπί «Συνέχεια », δίνω στο neuvoo τη συγκατάθεση μου να καταχωρήσει τα δεδομένα μου και να μου στέλνει ειδοποιήσεις μέσω email, όπως αναφέρεται λεπτομερώς στην πολιτική προστασίας προσωπικών δεδομένων του neuvoo. Μπορείτε ανά πάσα στιγμή να αποσύρετε τη συγκατάθεση σας ή να διαγραφθείτε οποιαδήποτε στιγμή.
    Συνέχεια
    Φόρμα αίτησης