Middle Application Security Engineer

WE ARE

SoftServe is a global digital solutions company headquartered in Austin, Texas, founded in 1993. Our associates work on 2,000+ projects with clients across North America, EMEA, APAC, and LATAM. We are about people who create bold things, make a difference, have fun, and love their work.

Critical Services Center of Excellence (CoE) as the subdivision of SoftServe, is a team of highly professional folks, with the primary focus on technology covering software architecture, startups, and enterprise technologies. SoftServe transforms business through various levels of security assessment, creating and executing threat scenarios, identifying the security risks, and filling the gaps. By analysis, design, and implementation of security-related controls, you will help us to improve the security state of a big range of clients. We have a proactive approach while consulting our clients on security management and analyzing the entire infrastructure on multiple layers. In this way, we design an efficient security strategy following the security standards (ISO27k, CIS Benchmarks, NIST, SOC2, HIPAA, PCI DSS, etc.) and considering the client’s short- and long-term goals.

Our comprehensive solution provides exceptional visibility of analyzed security risks, complies with international standards, helps to pass the compliance certification audits, and gives instructions to achieve the desired level of data protection. SoftServe Cybersecurity team provides reliable security solutions identifying the security gaps and guiding clients through each step of the improvement process. Being experts in a range of technologies, we find the approach fitting different clients’ needs best in terms of security. Cybersecurity team members are located in Poland, Ukraine, Spain and other European countries

IF YOU ARE

• Experienced with 2+ years in cybersecurity testing
• Skilled in mobile, and web testing
• Adept at network security
• Proficient with Clouds
• Good at DAST, SAST, and IAST
• Familiar with SSDLC
• Aware of some of OWASP Top 10/SANS 25 (SQLi, XSS, CSRF, Fuzzing, JADX, dex2jar, buffer overflow)
• Knowledgeable in network security (sniffing, Spoofing, tcpdump, Wireshark)
• Good at English (Upper-intermediate level) and comfortable in a multicultural environment
  
  
  

AND YOU WANT TO

• Work with penetration testing for network, infrastructure, and different types of applications: web applications, web services, mobile applications, and thick client applications
• Perform a security audit of application and infrastructure: designs, source code, integration, and security requirements
• Be involved in Red Team activities, such as social engineering, and simulation of security incidents to assess the effectiveness of the incident response
• Hold negotiations with the client to understand business and technical requirements
  
  
  

TOGETHER WE WILL

• Cooperate with the world-leading companies and experts in application security, security engineering and governance risk and compliance
• Contribute to a wide range of projects and clients
• Have a variety of projects with different types of needs and requirements
• Work towards giving you a highly independent position with total ownership and accountability, but also support when needed
• Get a great deal of learning and development opportunities along our structured career path
• Develop your cybersecurity skills, leadership, communication, and negotiation skills
• Access strong educational and mentorship programs
  
  
  

SoftServe is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment regardless of race, color, religion, age, sex, nationality, disability, sexual orientation, gender identity and expression, veteran status, and other protected characteristics under applicable law. Let’s put your talents and experience in motion with SoftServe