Job Details

Application Security Engineer with 3+ years of experience. Salary discussed at interview. Company: UNIREST. Remote work.

• Implement and develop secure SDLC (SSDLC) processes at all stages of development. • Integrate and administer modern application security analysis tools (SAST, DAST, SCA, Secret Scanning, etc.) and ensure their operation in CI/CD. • Analyze scanning results, triage found vulnerabilities, coordinate and track their remediation. • Manage and develop WAF, analyze events, and ensure its integration with other security systems. • Provide consultations and training to teams on secure development, as well as code and architecture reviews. • Participate in Bug Bounty and pentests: analyze reports, confirm vulnerabilities, prepare infrastructure for checks. • Prepare analytical and technical reports, interact with internal and external teams.

• Deep understanding of SSDLC principles and experience in organizing and applying information security tools (WAF, SAST, DAST, SCA, etc.). • Skills in administering attack detection and prevention systems. • Experience in analyzing and interpreting scanning results, understanding vulnerabilities (OWASP) and methods for their remediation. • Excellent analytical skills, ability to work in a team and prepare clear reports. • Understanding of modern incident response methods. • Basic understanding of Python.