Software Security Specialist

  • Vue Storefront
  • Remote job

Software Security Specialist

Job description

As a top of mind e-commerce software house, we change the way people buy and sell. Leading technology and the client’s focused management are the key factors for it. That’s why we are searching for an experienced Software Security Specialist to improve the quality and safety of our products and minimize any chances of leaving a hole that will result in hacking, and that is why we are in need of Software Security Specialist. In this position, you will concentrate on analyzing software designs and implementations from a security perspective, and identify and resolve security issues. You will be responsible for the appropriate security analysis, creation of defenses, and countermeasures at each phase of the software development lifecycle.


Salary: 66 - 99 PLN/h net B2B + VAT


What will you be doing?

  • Improving and supervising global software security guidelines
  • Conducting internal security training 
  • Unifying SAST processes across the company and supervising implementing them in existing and new projects
  • Performing security audits of internal and external web applications and infrastructures
  • Maintaining and improving SDLC
  • Developing security incident recovery guidelines
  • Monitoring vulnerabilities reports in used software

      Requirements

      Our technical stack:

      GitlabCI, Jenkins, Buddy, SonarQube, phpcs-security-audit, Debian & Alpine based infrastructure, AWS, Kubernetes, JavaScript, TypeScript, PHP, SQL RDBMS, ElasticSearch, Redis, RabbitMQ


      What are our main requirements?

      • Up to 5 years of proven work experience as a software security engineer
      • Experience in software development environments: JavaScript, TypeScript, PHP
      • Ability to  plan, implement and manage software security best practices
      • Critical thinking and problem-solving approach
      • Sense of ownership, pride in your performance and its impact on products success
      • Ability to use common continuous integrations tools
      • Experience with SonarQube, AWS, and Kubernetes
      • Experience with SQL & NoSQL and Redis databases
      • Knowledge of Advanced Message Queuing Protocol (AMQP)
      • Knowledge of network configuration, basic cryptography, and commonly known vulnerabilities
      • English (at least B2)


      What else would be appreciated?

      • Great interpersonal and communication skills
      • Security-related certificates, such as CISM, CISSP, CompTIA Security+, etc.


      What to do to be successful?

      Be flexible, responsible, self-reliant and highly communicative



      What can we offer?

      Please check the link below:
      https://divante.com/career#Benefits


        Sounds interesting? Please apply using the form below*

        If you have any additional questions feel free to contact our Recruiter Przemek at pwolski@divante.com

        *We’ll contact the best candidates.