Match score not available

Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • ✅ Top Match: We help you identify job offers where you're a perfect fit.
  • ✅ Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • ✅ Personalized Feedback: Receive feedback and expert guidance on applications, and have your profile manually reviewed.

Start Your Free Trial Now!

Start my free trial

Application Security Engineer

Remote: 
Full Remote
Experience: 
Mid-level (2-5 years)
Work from: 
Europe

Nebius logo
Nebius Scaleup https://nebius.com/
201 - 500 Employees
See all jobs

Job description

About Nebius

Launched in November 2023, the Nebius platform provides high-end infrastructure and tools for training, fine-tuning and inference. Based in Europe with a global footprint we aspire to become the leading AI cloud for AI practitioners around the world.

Nebius is built around the talents of around 400 highly skilled engineers with a proven track record in developing sophisticated cloud and ML solutions and designing cutting-edge hardware. This allows all the layers of the Nebius cloud – from hardware to UI – to be built in-house, differentiating Nebius from the majority of specialized clouds. As a result, Nebius customers get a true hyperscaler-cloud experience tailored for AI practitioners.

As an NVIDIA preferred cloud service provider, Nebius offers the latest NVIDIA GPUs including H100, L40S, with H200 and Blackwell chips coming soon.

Nebius owns a data center in Finland, built from the ground up by the company’s R&D team. We are expanding our infrastructure and plan to add new colocation data centers in Europe and North America already this year, and to build several greenfield DCs in the near future.

Our Finnish data center is home to ISEG, the most powerful commercially available supercomputer in Europe and the 19th most powerful globally (Top 500 list, June 2024). It also epitomizes our commitment to sustainability, with energy efficiency levels significantly above the global average and an innovative system that recovers waste heat to warm 2,000 residential buildings in the nearby town of Mäntsälä.

Nebius is headquartered in Amsterdam, Netherlands, with R&D and commercial hubs across North America, Europe and Israel.

The Role

The Security Engineering Team within the Platform Security organization is responsible for the strategic selection, implementation, management, and optimization of cybersecurity tools and technologies that improve security capabilities of the organization's platform. This team is instrumental in fortifying the security posture, proactively identifying and responding to security threats, ensuring the resilience and protection of critical data, systems, and services.

We are looking for an Application Security Engineer who will ensure the security of our software by identifying and mitigating vulnerabilities, implementing best security practices, and collaborating with development teams. The ideal candidate will have a strong background in secure coding, vulnerability assessment, and penetration testing.

In this position, your responsibility will be to

  • Build and maintain ASPM tools and their rules.

  • Identify, analyze, and remediate application security vulnerabilities using tools like ASPM.

  • Collaborate with development teams to integrate security best practices into the software development lifecycle (SDLC).

  • Conduct manual and automated penetration testing of applications.

  • Develop and maintain secure coding guidelines for development teams.

  • Facilitate threat modeling and risk assessments on new and existing applications.

  • Stay updated on the latest security threats, vulnerabilities, and mitigation techniques.

  • Serve as an application security subject matter expert to other teams.

We expect you to have

  • 4+ years of experience in application security.

  • Strong knowledge of common application security risks (e.g. OWASP Top 10) and how to mitigate them.

  • Experience with secure coding practices in languages such as Python, Go, Java, or JavaScript.

  • Proficiency in a common programming language (such as Go or Python) with a willingness to learn Go, if necessary.

  • Hands-on experience with security testing tools (Burp Suite, ZAP, Semgrep, etc.).

  • Understanding of authentication protocols like SAML or OIDC.

  • Experience in conducting threat-modeling sessions.

  • Strong problem-solving and analytical skills.

  • Good written and verbal communication skills in English.

  • Willingness to learn new things.

  • Being comfortable working independently.

It would be an added bonus if you had

    • Confidence in presenting your ideas and opinions in a manner that can be challenged, while responding well to feedback.

    • Experience in designing, building, and maintaining security automation.

    • Experience in translating compliance and regulation requirements into technical specifications.

    • Experience in exploiting vulnerabilities in web applications, Linux kernels, containers, and networks.

    • Security certifications such as OSCP or OSWE.

We’re growing and expanding our products every day. If you’re up to the challenge and are excited about AI and ML as much as we are, join us!

Required profile

Experience

Level of experience: Mid-level (2-5 years)
Industry :
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Hard Skills

Secure CodingPenetration TestingApplication SecurityVulnerability AssessmentsThreat ModelingSAMtoolsPython (Programming Language)General SecurityJavaScript (Programming Language)Health Risk AssessmentsJava (Programming Language)Burp SuiteGo (Programming Language)Compliance ManagementVulnerability DiscoveryTest Automation

Other Skills

  • Willingness To Learn
  • Analytical Skills
  • Communication
  • Problem Solving
Are you interested?

Security Engineer Related jobs

See more Security Engineer jobs