Application Security Engineer

Via is using technology to transform transportation around the world. From changing a single person’s daily commute to reducing humanity’s collective environmental footprint — we’ve got huge goals.

As an Application Security Engineer at Via, you will be a key member of the team, responsible for ensuring the security of Via's applications throughout the software development lifecycle. You will work closely with development, operations, and product teams to identify and mitigate vulnerabilities, promote secure coding practices, and build a robust application security program.

What You’ll Do:

• Perform security assessments, including penetration testing, vulnerability scanning, and code reviews, to identify security weaknesses in applications.
• Collaborate with development teams to remediate identified vulnerabilities and implement secure coding practices.
• Develop and deliver security training to development teams on secure coding techniques and common vulnerabilities.
• Define and implement application security testing strategies, including static analysis, dynamic analysis, and software composition analysis.
• Integrate security testing tools and processes into the CI/CD pipeline.
• Contribute to the development and maintenance of application security policies, standards, and procedures.
• Research and evaluate new application security tools and technologies.
• Monitor application security metrics and provide regular reports on the security posture of applications.
• Participate in incident response activities related to application security.
• Champion a security-first culture within the engineering organization.

Who You Are:

• A Bachelor's degree in Computer Science or a related field is a plus.
• Minimum of 2 years of experience as an Application Security Engineer, Penetration Tester or in a similar role.
• Strong understanding of application security concepts, including OWASP Top 10, CWE Top 25, and SANS Critical Security Controls.
• Experience with various application security testing tools and techniques (e.g., SAST, DAST, SCA).
• Proficiency in at least one scripting language (e.g., Python, JavaScript, Ruby).
• Experience with secure coding practices and vulnerability remediation.
• Familiarity with CI/CD pipelines and DevOps practices.
• Excellent communication and collaboration skills.
• Ability to work independently and as part of a team.
• Experience with cloud platforms (AWS is an advantage).

Compensation and Benefits

• Our product impacts millions of users around the world  providing alternative transport solutions that are more: efficient and accessible, changing cities to make them greener.
• Competitive compensation package which includes base salary and stock options
• Health insurance with a discount for family members
• Hybrid work and a lovely office situated in the heart of TLV, in Midtown, close to the light rail and train station
• Career development and growth opportunities
• Other perks: Freefit and other sports lessons, 10bis/Cibus - you choose!, happy hours, team events, communities and many more benefits

Founded in 2012, Via pioneered the TransitTech category by using new technologies to develop public mobility systems — optimizing networks of buses, shuttles, wheelchair accessible vehicles, school buses, autonomous vehicles, and electric vehicles around the globe. 

Building the world's most efficient, equitable, and sustainable transportation network for all passengers — including those with limited mobility, those without smartphones, and unbanked populations — Via works with its partners to lower the costs of public transit while providing transportation options that rival the convenience of a personal car while reducing environmental impact.

At the intersection of transportation and technology, Via is a visionary market leader that combines software innovation with sophisticated service design and operational expertise to fundamentally improve the way the world moves, providing technology in 650 communities and more than 35 countries and counting.

We are dedicated to building a diverse, inclusive and authentic workplace. If you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right candidate for this or other roles. All backgrounds, identities, and voices are welcomed and celebrated at Via.

Ready to join the ride? 

Via is an equal opportunity employer.