Full-Stack Security Developer (extern) (m/w/d)

Tasks

• Conduct root cause analyses for security bugs
• Contribute to security incident post mortems
• Document findings and mitigations
• Extend GitLab scanning coverage for frontend build artifacts
• Handle minor bugfixes across the stack
• Identify and harden vulnerable code paths
• Implement secure code fixes
• Review security sensitive changes
• Triage and remediate CVEs

Perks/Benefits

• Bike leasing
• Bring your dog to work
• Company and sports events
• Company pension plan
• Employee development budget
• Flexible working hours
• Free snacks and fruit and vegetables
• Health campaigns
• Hybrid work model
• LinkedIn Learning
• Paid parking
• Working time account

Skills/Tech-stack

Broken authentication | CI/CD | CSRF | Content Security | Content Security Policy | DAST | Dependency Vulnerabilities | Docker | Git | GitLab | GitLab CI | GitLab CI/CD | Injection Attacks | Insecure Direct Object References | Java | JavaScript | Kubernetes | Maven | Npm | Nuxt | OWASP ZAP | PNPM | SAST | Secrets management | Security Policy | Snyk | SonarQube | TypeScript | Vue 3 | XSS