Application Security Engineer (m/f/d) - IT Security at ABOUT YOU GmbH

Hamburg, , Germany -

Full Time

Start Date

Immediate

Expiry Date

07 Apr, 26

Salary

0.0

Posted On

07 Jan, 26

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Yes

Skills

Application Security, Penetration Testing, Ethical Hacking, Bug Bounties, Linux, AWS, Python, PHP, JavaScript, Incident Response, Web Application Firewalls, Gitlab CI/CD, Security Auditing, Monitoring Events, Security Measures, Automation

Industry

Internet Marketplace Platforms

Description

Company Description We are looking for a Application Security Engineer to join the Application Security circle of our IT-Security unit, which is dedicated to protecting our online shop, corporate system and customers. In this role, you will hack internal systems, design and implement security measures to safeguard our infrastructure, applications, and data. You will work closely with other security engineers, developers and IT teams to ensure security best practices, automate security processes and respond to emerging threats. What will you do Conduct regular penetration tests and code reviews Advise in the setup and maintenance of applications and infrastructure (usually hosted in AWS/Kubernetes) Triage monitoring events Optimization and automation of security auditing processes. This could also include setting up attack infrastructure, writing scripts in Python / Bash, and implementing security scanning in Gitlab CI. Who you are At least 2 years of hands-on experience in the IT Security field. Experience in pentesting, ethical hacking, bug bounties and the tooling used for that (e.g. Burpsuite) Proficient in Linux for the purpose of vulnerability detection Hands-on (security-related) experience with a major provider of cloud solutions. AWS is preferable. Good knowledge of a programming language (like Python). Good knowledge of PHP Fluent English: spoken and written Nice to have: Knowledge of Laravel. Ability to read and understand JavaScript. Experience with incident response activities. Experience with web application firewalls, CDN providers, e.g. Cloudflare, Akamai Experience with Gitlab CI/CD Pipelines Benefits Grow together with one of the fastest growing eCommerce companies in Europe Flexible working times (10 AM - 16 PM German Time Zone as core working-time) 40% discount on our online shop Fresh fruits + drinks everywhere Language courses (German & English) Free sports courses & reduced price for gym membership Subsidized public transportation ticket Free choice of hardware and operating system (Mac, Windows, Linux) also for private usage State-of-the-art tech stack running on AWS Modern office in the city center of Hamburgs International working environment and English as company language Company flats (subject to availability) Agile work environment (MOVE) and cross-functional teams Free access to Germany’s greatest developer conference code.talks Free access to online learning platforms like Laracast, Egghead and A Cloud Guru Help in relocation and VISA process YOU ARE THE CORE OF ABOUT YOU. We take responsibility for creating an inclusive and exceptional environment where all genders, nationalities and ethnicities feel welcomed and accepted exactly as they are. We believe that a diverse workforce essentially contributes to the ABOUT YOU culture. In order to maintain talent and diversity, we emphasize the care for physical health, mental health and overall well-being. Our values and work ethics essentially contribute to our brand mission: empower acceptance and shape an inclusive, fair and circular fashion culture. We are looking forward to receiving your application – preferably via our online application portal! Thus, we can ensure a faster process and for you it is very easy to upload your application documents.

How To Apply:

Incase you would like to apply to this job directly from the source, please click here

Responsibilities

Conduct regular penetration tests and code reviews while advising on the setup and maintenance of applications and infrastructure. Optimize and automate security auditing processes and respond to emerging threats.