Application Security Engineer, REMOTE

Who You Are:

• Bachelor's degree, preferably in a technical field i.e. Information Systems or Computer Science.


• Security certifications are desired but not required (CISSP, GIAC, CEH, MSCE, Security+, CSSLP).


• At least 4 years of demonstrated manual security testing


• You must have a solid understanding of security protocols, cryptography, authentication, authorization, and general application security requirements


• Experience implementing and operating security technologies and processes in a hybrid cloud environment, such as AWS or Azure and customer premise


• Strong understanding of IT operations and service support processes, ITILv3 certification preferred

Application Security Engineer 

About the project – №1 Travel platform in the world! 

Are you passionate about securing the application development pipeline and ensuring the security of web applications? Are you looking to thrive in a fast-paced environment? If so, our client is looking to hire an Application Security Engineer for our security team. In this role you will evaluate the security posture of client’s applications (both on premise and cloud).

Why join us:

• Ability to work remotely from anywhere in the world


• Close cooperation with the development team and client


• Opportunity to influence product development


• Professional growth: the certification preparation course is free for our specialists. The company pays for two attempts to pass the exam, regardless of the exam result


• We cover English classes (with a native speaker)


• Boost professional brand: you can participate in local conferences as a listener or as a speaker


• Regular team buildings: have fun with teammates


• Gifts for significant life events (marriage, childbirth)


• Tech and non-tech Zazmic Communities: support and share experience with each other

,[Scanning Tripadvisor web applications looking for vulnerabilities and ensuring they get fixed Working knowledge of any object oriented programming language (eg. Java / Python or similar technology) , Strong IaaS security skills, with a focus on cloud technologies like AWS, Azure, GCP , Hands-on experience in security aspects of compliance standards (ISO 27001, SSAE 16, COBIT, PCI, SOX, HIPAA, GLBA, etc.) , Researching new security threats, vulnerabilities and exploit techniques , Responding to new security threats and help implement new requirements as needed , Complete work accurately and within the deadlines required. , Provides technical guidance and oversight for technical resources , Work in a team environment while maintaining confidentiality of investigation information , Strong knowledge of working with OWASP concepts for various solutions , The duties and responsibilities listed in this job description represent the major responsibilities of the position. Other duties and responsibilities may be assigned, as required. ] Requirements: Degree, CISSP, GIAC, Protocols, Cryptography, Cloud, AWS, Azure Additionally: Conference budget, English lessons, Integration events, Flat structure, International projects.