Security Engineer | Mid - Senior | WebSec Team
Tech Stack / Keywords
Firma i stanowisko
Nord Security is a global leader in internet privacy and security solutions and Lithuania’s second tech unicorn. Established in 2012, Nord Security now has more than 1400 employees and serves millions of users worldwide. The company has developed several advanced cybersecurity solutions including NordVPN, NordLayer, NordLocker, NordPass, NordProtect, NordStellar, and Saily. NordVPN is the world’s most advanced VPN service provider, offering double VPN encryption, Onion Over VPN, Threat Protection, and has over 5,000 servers in 59 countries worldwide.
Wymagania
- Proven experience in conducting application security assessments including planning, testing, and vulnerability reporting.
- Proficiency with security scanners, static code analyzers, and debuggers.
- Understanding of networking and cryptographic fundamentals such as TLS, PFS, PKI, and digital certificates.
- Ability to perform manual security code audits.
- Experience with fuzzing, reverse engineering, and exploit development.
- Experience working with application developers to validate, assess, understand root causes, and mitigate vulnerabilities.
- Strong knowledge of application and infrastructure testing methodologies.
- Knowledge of secure architecture design and assessment using manual penetration testing approaches.
- Bonus points for community contributions such as public CVEs, bug bounty recognition, open-source tools, blogs, or certificates.
Obowiązki
- Conduct penetration testing on web and backend applications, networking components, and crypto services using white, grey box, or black box methods.
- Perform reverse engineering and code review to find bugs in cutting-edge security solutions.
- Design and create solutions to handle complex security issues from scratch.
- Develop scripts and security automation tools to enhance penetration testing processes.
- Collaborate closely with web and backend application developers to validate, assess, understand root causes of vulnerabilities, and work on their mitigation.
- Share security knowledge with colleagues.
Oferta
- Work alongside global experts to build world-leading cybersecurity tools impacting millions of users.
- Extensive training programs (online and offline) and mentorship opportunities.
- Hybrid work with 3 office days and 2 days working from home.
- Option to work from any location.
- Online workouts and access to sports and wellness facilities with Multisport card.
- Free psychologist consultations, mental health events, and premium access to wellness apps like Calm, Headspace, and Mindletic.
- Private health insurance.
- Special gifts for birthdays, anniversaries, weddings, and new family members.
- Company events, team-building, and knowledge-sharing events.
- Company getaway abroad with activities, concerts, and workshops.
Inne informacje
Candidates must provide accurate and complete information during recruitment. Limited use of AI tools to refine application materials is acceptable but candidates remain responsible for their submissions. Applications may be processed using automated tools for evaluation purposes, supporting but not replacing human decision-making. Candidates can opt out of automated evaluation by submitting applications directly via email.
NordSecurity
45 aktywnych ofert