اسنپ | Snapp

تاسیس در ۱۳۹۳ کامپیوتر، فناوری اطلاعات و اینترنت بیش از ۱۰۰۰ نفر snapp.ir

فرصت‌های شغلی ۴۹

استخدام Application Security Engineer

این آگهی منقضی شده است

دسته‌بندی شغلی

IT / DevOps / Server
موقعیت مکانی

تهران ، تهران
نوع همکاری

تمام وقت
حداقل سابقه کار

سه تا شش سال
حقوق

توافقی

شرح موقعیت شغلی

About Snapp
Snapp is the pioneer provider of ride-hailing mobile solutions in Iran that connects smartphone owners in need of a ride to Snapp drivers who use their private cars to offer transportation services. We are ambitious, passionate, engaged, and excited about pushing the boundaries of the transportation industry to new frontiers and being the first choice of each user in Iran.

Responsibilities

We’re looking for an Application Security Engineer to join our Security Team! As an Application Security Engineer, you will perform security testing of Snapp products and your day-to-day responsibilities will include the following:

Perform penetration testing.
Consult with developer teams on secure coding practices.
Triage and validate security vulnerabilities found or reported, and serve as a Subject Matter Expert in AppSec to the developer team in identifying mitigation solutions.
Create threat models of new applications and features to systematically understand how they can be attacked in order to prioritize control development.
Partner with teams from Developer, DevOps, and product working together to build and deliver secure products.
Integrate SAST/DAST into CI/CD pipeline.
Make suggestions for security improvements.
Perform ongoing application security testing and code review to improve software security.

Job Requirements

Have in-depth experience in Penetration Testing in Web and API.
Experience with multiple languages such as, Go, Java, PHP, etc. and understand how to detect and remedy related security issues such as OWASP top 10.
Ability to discover the business logic vulnerability.
Have code proficiency using one or more of the following languages, such as Python, Go, PHP, or Bash.
Have in-depth knowledge of security tools including Kali, and Burp Suite.
Hands-on experience implementing and tuning SAST/DAST in CI/CD.
Understanding of DevOps, CI/CD environments, familiarity with Docker/OKD.

General Skills

Excellent written and verbal communication skills in English.
Effective collaboration and team integration.
Strong problem-solving abilities through imaginative and creative thinking.
Maintain an insatiable curiosity and an aggressive outsider mindset.
Result Oriented (Essential).
Communication (Essential).
Technical Expertise (Essential).
Problem Solving/ Analytical Thinking (Essential).
Accountability (Essential).

معرفی شرکت

اسنپ محصولی ایرانی است که از تیمی خلاق، جوان و تحصیل‌کرده قدرت می‌گیرد و در تلاش است تا صنعت فناوری اطلاعات و ارتباطات را به زندگی روزمره جامعه پیوند بزند.
اهداف بزرگی در سر داریم و بلند پروازیم. قصد داریم اسنپ را به بهترین راهکار برای سفرهای درون‌شهری ایران تبدیل کنیم و در این راه به کمک افراد خلاق، سخت‌کوش و بلندپرواز احتیاج داریم. اگر چنین خصوصیاتی دارید خوشحال می‌شویم که رزومه خود را برای‌مان ارسال کنید.