Application Security Engineer | Senior

Main Responsibilities

• Ensure software design security and define secure implementation practices by syncing with teams responsible for the actual product development. 
• Ensure that security-related communication between technical teams involved in releasing the product is smooth (act as a “glue” between all teams so everyone’s on the same page);
• Develop scripts, security automation tools (e.g. for JIRA and GitLab) to enhance application security testing processes;
• Create tasks for the product's security reviews (SAST/DAST/SCA results, application security testing, etc.).
• Cooperate with product teams to learn about changes introduced into the product early to make educated security decisions.
• Ensure mobile/desktop applications and browser extensions are sufficiently tested.
• Support internal and external audits;
• Design and deliver training for security engineering awareness & adoption.
• Actively look for internal security gaps within the product or organization overall.
• Address security questions and give advice regarding the direction of the product's security.

Core Requirements

• Proven experience in mobile/desktop applications security assessment: planning, testing, methodologies, and vulnerability reporting;
• Good understanding of how networks work (OSI and TCP/IP models) with a particular focus on VPNs;
• Experience working with stakeholders to define the scope of security tests and identify remediation actions to address any vulnerabilities identified;
• Knowledge of secure coding practices (particularly differences between different low-level languages, such as C, C++, and Rust, and their respective security considerations);
• Sense of ownership with strong problem-solving and investigation skills;
• Experience with different OS (Linux, Android, iOS, macOS, Windows) security topics;
• Ability to build and maintain relationships, influence key stakeholders across the business;
• Ability to make product-related business decisions based on threats and vulnerabilities affecting it;
• A healthy dose of assertiveness combined with an ability to compromise.

Salary Range

• Gross Salary 22900 - 32900 PLN/Month

About Us
Nord Security is a global leader in internet privacy and security solutions and Lithuania’s second tech unicorn. Established in 2012, Nord Security now has more than 1400 employees and serves millions of users worldwide. Our team has a global mission to shape a more secure and peaceful online future for people everywhere. With that in mind, we built several advanced cybersecurity solutions: NordVPN, NordLayer, NordLocker, NordPass, NordProtect, NordStellar, and Saily.
And we’re always looking to expand our team of:• Future shapers• Restless achievers• Self-movers• Honest communicators• Team players
What We Offer • Access to Nord Security products. We build solutions used by millions of users worldwide, and you’ll get to experience our products firsthand, at no charge; • Professional growth. Internal and external events, online training, conferences, books - everything you need to reach full potential; • Health benefits. Private health insurance, online workouts, consultations, programs to improve mental health to feel and be your best;• Mental wellbeing. Access to mental health tools like Calm, Headspace, and Mindletic. Options for therapy to keep your emotional wellbeing in check; • Team spirit. Team buildings and parties with games, shows, tastings, food coupons, gifts, and it’s on us; • Additional paid leave. Additional days are covered by us in cases of illness or special occasions; • Flexibility. Flexible working time arrangement.
Kindly refer to our Privacy Notice for Recruitment Candidates for comprehensive information regarding our data handling procedures throughout recruitment processes: https://bit.ly/3urJdOL