Senior Application Security Engineer
vor 2 Wochen
Senior Application Security Engineer Fortinet is looking for a Sr. Application Security Engineer to join the Corporate Information Security team. This is a highly technical role, with responsibilities conducting security reviews on various Fortinet applications, providing security education to our engineers and handling externally reported vulnerabilities. Key Responsibilities: Serve as an application security subject matter expert who provides guidance to internal teams Work closely with development teams, perform code reviews, penetration tests, and architectural reviews on existing codes and new features. Develop, implement, and communicate vulnerability mitigation strategies to development teams Handle externally reported vulnerabilities as a member of Corporate Information Security Responsible Disclosure Program committee. Drive Fortinet static and dynamic application security testing program. Develop strategies, evaluate solutions, design and implement tools, processes and controls to ensure that security and privacy are designed in Fortinet applications Advise development teams on SDLC best practices. Proactively research new attack vectors on applications that may affect Fortinet applications and infrastructure. Be part of a global distributed team to share knowledge, workload and assignments. Strong sense of teamwork is required. Coach peers in application security concepts and best practices. Required Skills/Experience: 5+ years of work experience as an Information Security Researcher or Engineer 3+ years of experience with manually auditing source code to find security issues or programming skills in one or more of: Java, .NET, Python or JavaScript frameworks. Strong understanding on OWASP TOP 10 vulnerabilities. Strong understanding of common API security risks Strong understanding on Cloud-Native application architecture, microservices, containerization technologies, secure deployment and implementation issues. Proven experience in application penetration testing Proven experience in security code review Proven experience in application security testing (DAST, SAST, IAST, SCA) tools and processes Strong foundation in computer and network security, authentication & authorization, security protocols and applied cryptography Solid understanding with web security standards such as CSP, SOP, CORS, and emerging web security technologies. Solid understanding on CI/CD pipelines, build systems and DevSecOps principles. Experience defining security architecture patterns and standards in a large enterprise organization. Experience with cloud-based security solutions and familiarity with cloud service providers, particularly in relation to application security Experience working with threat modeling methodologies such as MITRE ATT&CK, STRIDE, PASTA etc. Efficiency with web proxies such as Burp or OWASP ZAP or Fiddler Understanding of OAuth and JWT implementations. Ability to organize & communicate effectively, both written and verbal, with technical and non-technical people across functional teams A BS degree in Computer Science, Cyber Security, other tech-related degree, or equivalent experience. Experience in Cloud Security Posture Management (CSPM) and/or Application Security Posture Management (ASPM) tools is a plus. Having OSWE OSCP, GWEB, GPEN or similar certificate is a plus Experience in Mobile Application Penetration Testing is a plus Familiarity with AI&ML & LLM concepts, AI Red Teaming, AI Guardrails is a plus. #LI-Hybrid
-
Senior Cyber Security Engineer
vor 1 Woche
Frankfurt am Main, Hessen, Deutschland Amadeus Fire Vollzeit 80.000 € - 100.000 € pro JahrReferenz In dieser strategischen Schlüsselrolle übernehmen Sie Verantwortung für zentrale Sicherheitsplattformen, führen internationale Projekte und beraten das Management bei wesentlichen Sicherheitsentscheidungen. Wenn Sie eine Position suchen, in der Sie Security-Initiativen global prägen und technisch wie strategisch Wirkung entfalten können,...
-
Senior DevOps Engineer
vor 2 Wochen
Frankfurt, Deutschland Ahdus technology VollzeitJob Title: DevOps Engineer Location: Frankfurt, Germany Job Type: Full-time, Depends (Either Onsite, Hybrid or Remote) Experience Level: Senior Job Summary: We are looking for a skilled and proactive DevOps Engineer to join our team in Heidelberg, Germany. In this role, you will be responsible for building and maintaining scalable, secure, and automated...
-
Senior Engineer
vor 2 Wochen
Frankfurt, Deutschland Ratiodata GmbH VollzeitSenior Engineer (m/w/d) Security ServicesWIR SINDDu suchst neue Herausforderungen und Karrieremöglichkeiten? Du willst deine Zukunft aktiv mitgestalten? Dann komm zu uns! Wir sind eins der größten Systemhäuser und Technologiepartner in Deutschland mit über 1.500 Kolleg:innen an 10 Standorten. Bewirb dich jetzt und zeig uns, aus welchen Bits und Bytes du...
-
Senior Engineer
vor 1 Woche
Frankfurt, Deutschland Ratiodata GmbH VollzeitSenior Engineer (m/w/d) Security Services E-MailWIR SINDDu suchst neue Herausforderungen und Karrieremöglichkeiten? Du willst deine Zukunft aktiv mitgestalten? Dann komm zu uns! Wir sind eins der größten Systemhäuser und Technologiepartner in Deutschland mit über 1.500 Kolleg:innen an 11 Standorten. Bewirb dich jetzt und zeig uns, aus welchen Bits und...
-
Senior Engineer
vor 1 Woche
Frankfurt, Deutschland Ratiodata SE VollzeitWIR SIND Du suchst neue Herausforderungen und Karrieremöglichkeiten? Du willst deine Zukunft aktiv mitgestalten? Dann komm zu uns! Wir sind eins der größten Systemhäuser und Technologiepartner in Deutschland mit über 1. Kolleg:innen an 11 Standorten. Bewirb dich jetzt und zeig uns, aus welchen Bits und Bytes du gemacht bist. Senior Engineer (m/w/d)...
-
Staff Security Engineer, EU Sovereign Cloud
vor 22 Stunden
Frankfurt (Flexible), Deutschland Genesys Vollzeit 120.000 € - 180.000 € pro JahrGenesys empowers organizations of all sizes to improve loyalty and business outcomes by creating the best experiences for their customers and employees. Through Genesys Cloud, the AI-powered Experience Orchestration platform, organizations can accelerate growth by delivering empathetic, personalized experiences at scale to drive customer loyalty, workforce...
-
Security Design Engineer
Vor 7 Tagen
Frankfurt am Main, Hessen, Deutschland e-shelter security services & Co Vollzeit 60.000 € - 80.000 € pro JahrAls Security Design Engineer entwickelst Du Sicherheitskonzepte und übernimmst Planungsprojekte mit dem Schwerpunkt Sicherheitstechnik für unsere Kunden aus der Kritischen Infrastruktur. Du bist Experte in Deinem Fachgebiet und liebst es, Deine Ergebnisse zu präsentieren? Du willst nah an der Operativen sein, die deine Lösungskonzepte umsetzt und an...
-
Product and Application Security Architect
Vor 3 Tagen
Frankfurt am Main, Deutschland FactSet Research Systems VollzeitRole/Department Description: - This position will report directly to the Product and Application Security Director._ Key Duties and Responsibilities: - Conduct regular security assessments and vulnerability analysis to identify potential risks and propose appropriate mitigation strategies - Conduct code reviews and penetration testing to identify security...
-
Senior Cloud Engineer
Vor 2 Tagen
Frankfurt, Deutschland Crypto Finance VollzeitAbout Crypto Finance Crypto Finance Group, part of Deutsche Börse Group, provides professional digital asset solutions to institutional clients. The Group comprises Crypto Finance AG, regulated by FINMA in Switzerland, offering trading, custody, and wallet services, as well as Crypto Finance (Deutschland) GmbH, regulated by BaFin in Germany, offering...
-
Senior Cloud Engineer
Vor 3 Tagen
Frankfurt, Deutschland Crypto Finance AG VollzeitAbout Crypto Finance Crypto Finance Group, part of Deutsche Börse Group, provides professional digital asset solutions to institutional clients. The Group comprises Crypto Finance AG, regulated by FINMA in Switzerland, offering trading, custody, and wallet services, as well as Crypto Finance (Deutschland) GmbH, regulated by BaFin in Germany, offering...
