Information Security Engineer (White Hat)
Sofia (Labs)
Amadeus
Discover how Amadeus' platform and technology help airlines, travel agencies, hotels and others connect, do business, and deliver better travel experiences.Job Title
Information Security Engineer (White Hat)We are Cytric Solutions a fast-growing unit within Amadeus, the biggest tech giant of the travel industry, dedicated to helping corporations in their digital transformation processes for business travel and expense.
We’re made up of more than 700 people worldwide, who work together to provide a smooth, end-to-end digital experience to the employees and improve the efficiency of the corporations they work for.
We have a mission, we’re empowered, agile, innovative – and ready to challenge the incumbents!
In Cytric Solutions, we combine a scale-up culture with an insatiable hunger to disrupt the travel and expense ecosystem.
So, are you ready to help the world’s leading companies drive their digital transformation, and take them to the next level?
You can benefit from being part of a global international IT company while working for a strategic scale-up.
You can power business acceleration and innovation for top companies and work with big tech giants like Microsoft.
We have attractive benefits packages, countless opportunities to learn and grow your career, hybrid and flexible work set up.
In Amadeus Cytric Solutions, we care for our people just as much as we care for our customers.
Together we can build the smartest, most connected, sustainable and collaborative travel and expense ecosystem in the world, to transform the corporate traveler experience into a seamless, complete and enjoyable activity.
For our location in Sofia, we are looking for а skillful and motivated Information Security Engineer (White Hat).
In this role, you will:
Facilitate SDL (Secure Development Lifecycle) deployment by embarking DEV & QA in SDL Activities
Configure the application builds to allow the deployment of the Security scans and their execution
Perform the vulnerabilities investigations to categorize them (Confirmed/False positive) and design/implement the remediations with the DEV/QA teams
Train, help, share Security knowledge & information to DEV & QA
Train DEV & QA in his area to allow them to perform the SDL activities
Teach Binary & Source scan usage & identification (aka triage), tracking and resolution of vulnerabilities
Teach Dynamic scan usage + scripting & identification (aka triage), tracking and resolution of vulnerabilities
Share return on experience & knowledge to the Software Security Community
Promote the SDL methodology & tools to improve adoption
Learn and upskill in SDL
Attend trainings, Software Security Community to be fluent in SDL activities and Software Security
Practice the usage of security tools & activities
Keep up to date regarding new Vulnerabilities found in third parties’ software (FWK, OSS, Products)
Make the link between Application Security Office and Engineering Community
About the ideal candidate
2+ years of experience as Information Security/ White Hat Engineer
Experience with tools as Burp Suite, Qualys, Threats Manager Studio, Postman, ZAP, Blackduck, Fortify
Scripting skills (Java code, Oracle SQLs, etc.), Quickly Address Security Issues, Developing and maintaining software application security policies and procedures, providing technical guidelines, developing, and maintaining documentation, designing technical solutions to address security weakness
Minimum of a Bachelor’s degree in computer science or related fields, Ability to work collaboratively with senior management across multiple departments, ability to prioritize and execute tasks, ability to handle sensitive and confidential information, ability to handle multiple tasks simultaneously, strong analytical and problem-solving skills
Advanced level of written and oral English
What will be considered as a plus:
Experience with Azure
What can we offer you?
Working for a company that has been voted as a Top Employer of Europe
A competitive salary and extensive range of benefits including life and health insurance
Multisport card
Public transport card / subsidy for a parking lot in the office
25+ days paid time off (increasing for up to 30, depending on your stay with us)
A well-balanced mix between work from home and collaborative work from the office
Career and development opportunities through R&D career paths
Learning opportunities
Foster innovation
Impact millions of travelers from all around the globe
Application Process
The application process will take a few minutes to complete. You’ll need to create your candidate profile in our system and upload your resume.
If your profile matches what we’re looking for, one of our recruiters will contact you and organize a short phone interview.
Are you the One we’re looking for? Join us to Power better journeys through travel technology!
Diversity & Inclusion
Amadeus aspires to be a leader in Diversity, Equity and Inclusion in the tech industry, enabling every employee to reach their full potential by fostering a culture of belonging and fair treatment, attracting the best talent from all backgrounds, and as a role model for an inclusive employee experience.
Amadeus is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to gender, race, ethnicity, sexual orientation, age, beliefs, disability or any other characteristics protected by law.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Application security Azure Burp Suite Computer Science Java Oracle PostMan Qualys R&D Scripting Vulnerabilities
Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Flex vacation Health care Home office stipend Insurance
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.