Application Security Engineer (Mobile security)
- Employer
- Exness Careers
- Location
- Cyprus
- Salary
- Competitive
- Closing date
- 12 Nov 2024
View more categoriesView less categories
- Sector
- Engineering, IT, Security
- Job Role
- Application Security
- Job Type
- Permanent
You need to sign in or create an account to save a job.
With over 2,100 employees of more than 100 nationalities, Exness is the place for global teamwork, incredible leadership, a learning culture, and constant development. Unlimited by time zones, Exnessians from around the world have worked seamlessly together since 2008 to provide our traders with the best possible trading experience.
Your role at Exness:
You will identify existing and emerging security threats in in-house mobile applications and services and create a protected environment. Together with a team of Application security engineers, you will maintain business continuity and regulatory compliance by fostering a security culture within the company. You will use your industry experience to own and drive the resolution of complex security incidents, policy questions, and technical security issues.
You will need a team player mindset and should be ready to collaborate with other departments to solve security-related issues. In this role, you will need to be passionate about keeping services safe and driven by opportunities to mitigate vulnerabilities and risks.
Our Application Security team creates and maintains the safest application environment for our employees and customers, maintaining a security lifecycle for in-house applications based on microservice architecture, written mainly in Python and Golang. Our Application security engineers work with a wide stack of application security scanners, actively use DevSecOps approaches, and automate security operations, maintain WAF, bug bounty program, and are involved in awareness activities.
You will:
Nice to have:
Sounds like you? Apply.
Please note: We occasionally amend or withdraw Exness jobs and reserve the right to do so at any time, including prior to the advertised closing date. Before applying, you are advised to read our data protection policy. This policy describes the processing that may be associated with your personal data and informs you that your personal data may be transferred to Exness/Exness Group companies around the world. Exness Group and its approved recruitment consultants will never ask you for a fee to process or consider your application for a career with Exness. Anyone who demands such a fee is not an authorized Exness representative and you are strongly advised to refuse any such demand.
At Exness, we're an equal opportunity employer where every individual is valued. No matter your race, color, religion, sex, national origin, sexual orientation, gender identity or disability, we welcome you. As an international fintech company, we embrace the richness of our diverse team, respecting each individual and promoting gender equality for all genders in our workforce.
Your role at Exness:
You will identify existing and emerging security threats in in-house mobile applications and services and create a protected environment. Together with a team of Application security engineers, you will maintain business continuity and regulatory compliance by fostering a security culture within the company. You will use your industry experience to own and drive the resolution of complex security incidents, policy questions, and technical security issues.
You will need a team player mindset and should be ready to collaborate with other departments to solve security-related issues. In this role, you will need to be passionate about keeping services safe and driven by opportunities to mitigate vulnerabilities and risks.
Our Application Security team creates and maintains the safest application environment for our employees and customers, maintaining a security lifecycle for in-house applications based on microservice architecture, written mainly in Python and Golang. Our Application security engineers work with a wide stack of application security scanners, actively use DevSecOps approaches, and automate security operations, maintain WAF, bug bounty program, and are involved in awareness activities.
You will:
- Work directly with the business units to facilitate risk assessment and risk management processes.
- Maintain effective communication and coordination with development and ops teams in security-related areas.
- Conduct security reviews of architecture and code of new and existing in-house applications.
- Support SDLC and Defect management processes in development teams.
- Maintain and work with mobile security tools.
- Perform awareness training for developers.
- Carry out the management of security incidents, including investigations and forensics.
- Manage bug bounty program
- 3 or more years of experience in information security or other IT roles
- Background in development or penetration testing
- Knowledge of most common technical and logical vulnerabilities and ways of protective measures from exploiting them
- Good experience in exploiting Mobile Application vulnerabilities
- Experience in writing and reading code in at least one programming language
- Ability to leverage business communication skills to inform, convince, and educate employees to enable practical information security activities and processes
- Intermediate-level or higher of English
Nice to have:
- General acquaintance with regulatory frameworks and compliance requirements associated with financial services
- Understanding of microservice architecture, environment and security measures
- Any industry certifications
- Pet projects, researches in the information security area
- CTF or Bug Bounty Experience ;)
- Competitive and attractive compensation
- Extensive learning opportunities, such as professional training and certifications, soft skills development, free English courses, and trading workshops
- Flight tickets, hotel or apartment accommodation for your first month, migration support, and legal help for you and your family
- Health and life insurance for employees, spouses, and children, including vaccinations, tests, mental health care, and coverage for vision and dental care
- Generous time off, including 21 days of annual leave and paid sick leave
- Education allowance for your children's school and kindergarten fees
- Access to our very own sports club with dedicated coaches, free Sanctum Club memberships for you and your spouse, corporate SUPs, jet skis, etc
- A branded company car with a parking space near the office
- Outstanding team-building experiences and Exness community gatherings
- First interview with a Talent Acquisition Specialist (45 minutes)
- Short online English test (for non-native speakers)
- Technical interview (1 hour)
- Final interview (1 hour)
Sounds like you? Apply.
Please note: We occasionally amend or withdraw Exness jobs and reserve the right to do so at any time, including prior to the advertised closing date. Before applying, you are advised to read our data protection policy. This policy describes the processing that may be associated with your personal data and informs you that your personal data may be transferred to Exness/Exness Group companies around the world. Exness Group and its approved recruitment consultants will never ask you for a fee to process or consider your application for a career with Exness. Anyone who demands such a fee is not an authorized Exness representative and you are strongly advised to refuse any such demand.
At Exness, we're an equal opportunity employer where every individual is valued. No matter your race, color, religion, sex, national origin, sexual orientation, gender identity or disability, we welcome you. As an international fintech company, we embrace the richness of our diverse team, respecting each individual and promoting gender equality for all genders in our workforce.
You need to sign in or create an account to save a job.
Get job alerts
Create a job alert and receive personalised job recommendations straight to your inbox.
Create alert