Match score not available

Security Engineer - Red Team

extra holidays - extra parental leave
Remote: 
Full Remote
Contract: 
Experience: 
Mid-level (2-5 years)
Work from: 

Offer summary

Qualifications:

2+ years in web application security, Experience with SAST/DAST tools, Understanding of standard security vulnerabilities, Familiarity with cloud security concepts, Knowledge of programming languages, especially Python, Javascript, PHP.

Key responsabilities:

  • Perform penetration tests and threat analysis
  • Review source code for security flaws
  • Train teams in security testing techniques
  • Support developers in secure software development lifecycle
  • Conduct research on new attack vectors
Insider. logo
Insider. Information Technology & Services Large https://useinsider.com/
1001 - 5000 Employees
See more Insider. offers

Job description

Before jumping in on all the information about the role and what you can bring to the table, let us introduce ourselves real quick.

About us

We are Insider, a B2B SaaS company that drives growth for its clients around the world. How are we achieving this? We are the #1 AI-native platform for Customer Experience and Marketing—offers marketers a single platform to deliver unique experiences per person, drive profitable growth, and unleash peak productivity and efficiency. Our platform connects data across channels, predicts future behavior with AI, and individualizes experiences from a single platform. We’ve unlocked unicorn status following our Series D round We are backed by top-notch investors, including Sequoia Capital, QIA, Riverwood, and Endeavor Catalyst, and trusted by 1200+ brands from high-growth startups to the most prestigious Fortune 500 companies such as Samsung, Coca Cola, Nike, L’Oreal, Singapore Airlines, Virgin, Nestle, Nissan, Lenovo, Puma, IKEA, Allianz, Dominos, Avon, CNN, and the list goes on.
Having recently unlocked unicorn status, Insider was congratulated for becoming one of the only woman-founded, women-led B2B SaaS unicorns in the world, to achieve $200M USD in CARR (Committed Annual Recurring Revenue). Insider was named a leader in the The Forrester Wave for Cross-Channel Campaign Management 2021, and Leader in the IDC MarketScape: Worldwide Omnichannel Marketing Platforms for B2C Enterprises 2023 Assessment. The company has been recognized in The Top 1% of all software companies worldwide in G2’s 2024 Software Awards, and named in The Top 10 Best Software Products with the most #1 rankings alongside other software legends like Google, Zoom, and Monday.com. According to G2’s Spring’24 reports. Insider is also the #1 G2 Leader in 6+ categories, including Customer Data Platforms (CDP), Personalization Engines, Personalization Software, Mobile Marketing, Customer Journey Analytics, and eCommerce Personalization.

When our team founded Insider, they not only sought to create a product company, but to build the most socially progressive technology community in the world. Through our corporate social responsibility initiatives like 100projects shecodes, sheleads and shemarkables, our community has committed to scaling its impact into our communities across 27+ countries, spearheading transformative projects in areas such as health, education, farming, animal rights, and increasing the proportional representation of women in STEM careers. 

Behind all these achievements, there is an exceptionally talented and passionate team across 27+ countries that moves fast and agile, creates cutting-edge products, and focuses on making an impact. If you want to join us on this journey, just keep reading.

And now? Now we are looking for a Security Engineer - Red Team who wants to take their career one step further. If you think you are one of those people, here you will have the chance to work with the world's leading brands with Artificial Intelligence & Machine Learning technologies. Right now, while you are reading this, we are sending an average of 2.2 billion requests and almost 2 billion instant notifications to more than 450 servers a day. On the Artificial Intelligence and Predictive side, we have more than 100 TB of historical data. We do not wait for jobs or opportunities to come to our feet, we create them. We have now reached 25% of global users. If all these interests you, read on for more!

Our Engineers and Software Developers always think with an innovative perspective, taking advantage of the inexhaustible power of the digital world. They create impressive and intelligent products like a true artist. Our Product and Development teams are located in our Istanbul and Ankara offices, so we produce and develop the technology we export to the world in our own country. As Insider, we believe in cooperation and adapting the innovations brought by technology by acting fast. We work closely with other Departments with agile teams, and we are not afraid of getting our hands dirty. As we said; we do not wait for jobs or opportunities to come to our feet, we create them ourselves. You can check our Tech Stacks here!

A Security Engineer Red Team in Insider day in and day out:
  • performs web, mobile application, and internal penetration test, source code reviews, threat analysis, social-engineering assessments,
  • supports blue teams when needed
  • researches new attack vectors and stay current with cybersecurity news and trends,
  • trains Quality Assurance and Development teams in standard security testing techniques and secure software development.

  • We want you to join us while we are taking a step into the future if you:
  • have 2+ years of working experience in web application security,
  • have hands-on experience in security testing of Web applications, Web service, Mobile applications, APIs, etc.
  • have experience securing REST APIs and web services,
  • have experience using and implementing SAST / DAST tools such as Fortify, Veracode, Checkmarx, or other similar tools,
  • know conducting penetration tests of information systems using commercial and open-source exploitation tools,
  • have a good understanding of standard security vulnerabilities and common remediation as published by OWASP, SANS, etc.
  • have experience working with secure coding methodology and best practices and their implementation within engineering teams,
  • will support developers of our business units in their SDLC and provide guidance regarding mitigations to emerging threats,
  • will review application source code based on static application security testing tools,
  • will be engaging in security research to remain current on vulnerabilities and testing tools,
  • will be creating detailed, professional documentation/reports that clearly communicate vulnerabilities, mitigation strategies, and remediation steps,
  • have the ability to work on multiple projects concurrently and be committed to providing exemplary customer service,
  • have strong written and verbal communication skills in English,
  • have Python, Javascript, PHP programming experience as a plus,
  • have knowledge in scripting (any language) and experience in automation scripts for application security testing as a plus,
  • have familiarity with cloud security, particularly AWS Security concepts as a plus,
  • have certifications of eWAPTx, OSCP, OSWE, etc. as a plus,
  • are able to work in a team-centric environment,
  • have strong critical thinking and analytical skills,
  • have experience in executing white, gray, or black box security posture assessments and complete detailed reports that outline the findings and recommendations,
  • have strong presentation, written, and oral communication skills.

  • While exporting our technology to the world, we offer you:
  • “Tech Talks” with famous and groundbreaking people from the software world, “Dev Talks” where our Software Developers talk about their career steps, and many events where groundbreaking ideas are discussed,
  • Hackathons we organize inside that push the boundaries, programming challenges, and coding competitions,
  • free access to exclusive services such as Laracasts, Egghead, LinkedIn Learning, Blinkist, Masterclass, and Spotify,
  • Inclusive Private Health Insurance,
  • Smart Work Model side benefits to support food and bill expenses,
  • The infamous Team Activities that are bursting with fun,
  • No Dress code! This is a fast and innovative startup, you can wear whatever you want.
  • Remote Work! Work anywhere you'd like in Turkey.
  • We provide equal opportunity in a zero-discrimination workplace and not just welcome but also embrace everyone without regard to sex, race, color, nationality, religion, gender identity, sexual orientation, disability status, citizenship, or marital status.

    Please follow Insider on LinkedIn, Instagram, Youtube, and Medium!

    Required profile

    Experience

    Level of experience: Mid-level (2-5 years)
    Industry :
    Information Technology & Services
    Spoken language(s):
    EnglishEnglish
    Check out the description to know which languages are mandatory.

    Other Skills

    • Analytical Skills
    • Verbal Communication Skills
    • Customer Service
    • Teamwork
    • Critical Thinking

    Security Engineer Related jobs