Senior Application Security Engineer

Nord Security

full-time

Posted on:

Location Type: Hybrid

Location: Bucharest • 🇷🇴 Romania

Visit company website
AI Apply
Apply

Job Level

Senior

Tech Stack

GoRust

About the role

  • Conduct security reviews of application designs, source code, and third-party libraries;
  • Perform regular application vulnerability assessments using automated tools and manual testing techniques;
  • Collaborate with development teams to design secure architectures and implement security controls;
  • Help maintain security tools, scripts, and processes to support secure development;
  • Stay current with industry trends, zero-day vulnerabilities, and best practices in application security;
  • Develop scripts and security automation tools to enhance application security testing processes;
  • Design and deliver training for security engineering awareness & adoption;
  • Actively look for internal security gaps within the product or organization overall;
  • Ensure mobile/desktop applications are sufficiently tested and support internal and external audits;

Requirements

  • Proven experience in mobile/desktop application security assessment planning, testing, methodologies, and vulnerability reporting
  • Strong understanding of secure coding practices
  • Ability to perform manual security code audit
  • Proficiency in at least one low-level programming language (e.g. C, C++, Rust, Go)
  • Solid understanding of networking protocols such as TCP, UDP and HTTP
  • Familiarity with debuggers (e.g. GDB, LLDB, WinDbg)
  • Familiarity with reverse engineering tools (e.g. Ghidra, IDA)
  • Solid understanding of memory corruption issues, buffer overflows and related vulnerability classes
  • Familiarity with common authentication and authorization protocols (OAuth, SAML, JWT, etc.)
  • Ability to work with networking tools such as Wireshark and tcpdump
  • Ability to quickly assimilate new technologies and tools
  • Sense of ownership with strong problem-solving and investigation skills
  • Ability to build and maintain relationships, influence key stakeholders across the business
  • Bonus points for community contributions like public CVEs, bug bounty recognition, open-source tools, blogs, etc.
Benefits
  • Innovate with industry leaders
  • Boost your skills via extensive training programs
  • Enjoy flexibility with 3 office days and working from home for the remaining 2
  • Work from any location when you feel a need to recharge
  • Fuel your active lifestyle with online workouts
  • Nurture your mind with free psychologist consultations
  • Celebrate life’s big moments with special gifts on your birthday, anniversary, etc.
  • Experience iconic celebrations, team-buildings, and knowledge-sharing events
  • Embark on a legendary company getaway abroad

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
application security assessmentvulnerability reportingsecure coding practicesmanual security code auditlow-level programming languagesnetworking protocolsmemory corruption issuesbuffer overflowsauthentication protocolsauthorization protocols
Soft skills
problem-solving skillsinvestigation skillsrelationship buildinginfluencing stakeholderssense of ownershipability to assimilate new technologies