![Box](https://media.trabajo.org/img/noimg.jpg)
Application Security Tooling Engineer III
1 tydzień temu
Box is the world’s leading Content Cloud. We are trusted by more than 115K organizations around the world today, including nearly 70% of the Fortune 500 and leaders across deeply regulated industries (such as AstraZeneca, JLL, and Nationwide), to protect their data, fuel collaboration, and power critical workflows with secure, enterprise AI.
By joining Box, you will have the unique opportunity to continue driving our platform forward. Content powers how we work. It’s the billions of files and information flowing across teams, departments, and key business processes every single day: contracts, invoices, employee records, financials, product specs, marketing assets, and more. Our mission is to bring intelligence to the world of content management and empower our customers to completely transform workflows across their organizations. With the combination of AI and enterprise content, the opportunity has never been greater to transform how the world works together and at Box you will be on the front lines of this massive shift.
Founded in 2005, Box is headquartered in Redwood City, CA, and we have offices across the United States, Europe, and Asia.
WHY BOX NEEDS YOUBox is looking for an application security engineer with a good grounding in application security, penetration testing, and familiar with SAST, DAST and SCA tools. This person will detect and analyze vulnerabilities, optimize and automate testing solutions, and devise mitigation strategies.
WHAT YOU'LL DOProvide vulnerability risk and remediation analysis
Penetration testing
Optimizing vulnerability detection tools
Grow your AppSec skills to widen your responsibilities
WHO YOU ARE3+ years previous experience in Application security /red team/DevSecOps with a strong focus on security tool onboarding and/or optimization
Knowledge of OWASP Top 10, Dynamic Application Security Testing (DAST), Static Application Security Testing (SAST), and Threat Modeling
Experience with security testing tools, software vulnerability management, including thorough vulnerability risk analysis and mitigation plans
Familiarity with multiple languages such as Java, React, Node JS, PHP, Scala, C and/or Python
Understanding of how to detect and prioritize Front End, API's, Microservices and Container vulnerabilities
Familiar with common build/automation tooling: ex. Jenkins, GIT
You understand application security fundementals, OWASP vulnerabilities and their mitigations
You understand secure engineering best practices, can articulate problem statements and propose solutions to both technically savvy and non-technical audiences
You are either a passionate security minded devsecops/software engineer/devops who has been a part of building high quality applications and services
You have a growth mindset, push yourself towards excellence and focus on continuous functional improvements
You are a curious person who looks at problem statements and can clearly propose actionable solutions
You have a passion for cyber security demonstrated through participation/leadership in conferences, webinars, Capture the Flag (CTF), TryHackMe, HacktheBox, Bug Bounty, Submission of CVEs and/or personal projects
Good understanding of past, current, and emerging security exploits
Box lives its values, with community and in-person collaboration being a core part of our culture. Boxers are expected to work from their assigned office a minimum of 2 days per week, with a focus on Tuesdays and Thursdays. Your Recruiter will share more about how we work and company culture during the hiring process.
EQUAL OPPORTUNITYWe are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability, and any other protected ground of discrimination under applicable human rights legislation. For details on how we protect your information when you apply, please see our .For more details on how Box Poland protects your information, please see our . #LI-KS2-
Application Security Tooling Engineer III @ Box Inc.
1 dzień temu
Warsaw, Polska Box Inc. Pełny etatApplication Security Tooling Engineer III *Our compensation structure is the base salary and equity in the form of restricted stock units. WHAT IS BOX? Box is the world’s leading Content Cloud. We are trusted by more than 115K organizations around the world today, including nearly 70% of the Fortune 500 and leaders across deeply regulated industries (such...
-
Security Tooling Engineer II
1 miesiąc temu
Warsaw, Polska Box Pełny etatWHAT IS BOX?Box is the world’s leading Content Cloud. We are trusted by more than 115K organizations around the world today, including nearly 70% of the Fortune 500 and leaders across deeply regulated industries (such as AstraZeneca, JLL, and Nationwide), to protect their data, fuel collaboration, and power critical workflows with secure, enterprise AI.By...
-
Security Tooling Engineer II
4 tygodni temu
Warsaw, Polska Box Pełny etatWHAT IS BOX?Box is the world’s leading Content Cloud. We are trusted by more than 115K organizations around the world today, including nearly 70% of the Fortune 500 and leaders across deeply regulated industries (such as AstraZeneca, JLL, and Nationwide), to protect their data, fuel collaboration, and power critical workflows with secure, enterprise AI.By...
-
Senior Application Security Engineer
4 tygodni temu
Warsaw, Polska DataArt Pełny etatResponsibilities Create detailed process management workflows to ensure security engineering activities are tracked, processes reviewed, policies are followed, and audit requirements are met Build trusted relationships with product engineering teams, developers, and architects, establishing yourself as a security authority with deep understanding of...
-
Consultant - Application Security @
2 tygodni temu
Warsaw, Polska Link Group Pełny etatBachelor's degree in software engineering or related field, or equivalent practical experience.Minimum of 5 years working as a software developer or DevOps specialist.Proficiency in English communication (CEFR Level C1).Ability to identify and address vulnerabilities listed in OWASP Top10.Knowledge of object-oriented programming languages such as Java or...
-
Consultant - Application Security @ Link Group
4 tygodni temu
Warsaw, Polska Link Group Pełny etatBachelor's degree in software engineering or related field, or equivalent practical experience. Minimum of 5 years working as a software developer or DevOps specialist. Proficiency in English communication (CEFR Level C1). Ability to identify and address vulnerabilities listed in OWASP Top10. Knowledge of object-oriented programming languages such as Java...
-
Security Engineer
5 dni temu
Warsaw, Polska T-Mobile Pełny etatSecurity Engineer - Security Tribe Miejsce pracy: Warszawa Technologies we use Expected AWS Python Bash PowerShell About the project T-Mobile Poland is a leader in telecommunication, dedicated to providing innovative solutions that drive growth and efficiency for our clients. Our commitment to security and integrity is at the forefront of our operations,...
-
Security Engineer
6 dni temu
Warsaw, Polska T-Mobile Pełny etattechnologies-expected : AWS Python Bash PowerShell about-project : T-Mobile Poland is a leader in telecommunication, dedicated to providing innovative solutions that drive growth and efficiency for our clients. Our commitment to security and integrity is at the forefront of our operations, and we are seeking a talented Security Engineer to join our team. As...
-
Application Security Engineer
3 miesięcy temu
Warsaw, Polska Goldman Sachs Pełny etatBusiness Unit Overview Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our...
-
Application Security Engineer
4 tygodni temu
Warsaw, Polska Goldman Sachs Pełny etatBusiness Unit Overview Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our...
-
DevOps Security Engineer
3 miesięcy temu
Warsaw, Polska ING Pełny etatDevOps Security Engineer We are looking for you, if you have: Experience in security monitoring use cases development and hands-on experience with security technologies such as SIEM, endpoint or network security monitoring detection tooling, Strong security analytics or threat hunting skills, Experience with an enterprise SIEM solutions...
-
Cloud Security Engineer
2 miesięcy temu
Warsaw, Polska Mindbox S.A. Pełny etattechnologies-expected : AWS Google Cloud Platform Terraform Kubernetes about-project : We’re looking for a Cloud security engineer to join our Client's growing Technology team. Working within the security team you’ll play a key part in securing their cloud native IaaS and PaaS services. They have services across both AWS and GCP responsibilities...
-
Cloud Security Engineer
2 tygodni temu
Warsaw, Polska Mindbox S.A. Pełny etatExpected, AWS, Google Cloud Platform, KubernetesOperating system, WindowsAbout the project, Our Client is building the future of banking - pursuing the mission to build the leading BaaS provider in the UK, underpinned by innovative technology and backed by their reach and strong balance sheet., If you want to be part of a talented, diverse group of...
-
Principal Product Security Engineer
4 tygodni temu
Warsaw, Polska Snowflake Pełny etatBuild the future of data. Join the Snowflake team.In this position you will be expected to design, plan, and implement features and projects which act on and verify the security architecture of Snowflake. Tasks will include adding to an existing web application, scripting, and building stand alone programs. The majority of these projects will focus on...
-
Principal Product Security Engineer
1 miesiąc temu
Warsaw, Polska Snowflake Pełny etatBuild the future of data. Join the Snowflake team. In this position you will be expected to design, plan, and implement features and projects which act on and verify the security architecture of Snowflake. Tasks will include adding to an existing web application, scripting, and building stand alone programs. The majority of these projects will focus on...
-
Security Engineer
4 tygodni temu
Warsaw, Polska Certara Pełny etatOverview Security Engineer plays a key part for correlation rules and dashboard creation and support the rest of the team. The Security Engineer works in a team with an investigative spirit, good perception, and judgment of the security landscape. The Security Engineer will help develop our strategy for finding innovative ways to monitor our...
-
Mid Security Engineer
1 dzień temu
Warsaw, Polska ACAISOFT POLAND Sp. z o.o. Pełny etatMid Security Engineer Miejsce pracy: Warszawa Technologies we use Expected PowerShell Azure Active Directory Crowdstrike Optional Python/Go/Bash Okta Operating system Windows About the project Work with us on a project for a U.S. fintech client that is the largest provider of home plans in the real estate market. We are developing various...
-
Cloud Security Engineer
2 tygodni temu
Warsaw, Polska Mindbox S.A. Pełny etatExpected, AWS, Google Cloud Platform, Terraform, KubernetesOperating system, macOSAbout the project, We're looking for a Cloud security engineer to join our Client's growing Technology team. Working within the security team you'll play a key part in securing their cloud native IaaS and PaaS services. They have services across both AWS and GCPYour...
-
Cloud Security Engineer
4 tygodni temu
Warsaw, Polska Avenga Pełny etatRequirements: 5+ years of experience on similar position Excellent knowledge of AWS and/or GCP IaaS and PaaS Experience of designing secure cloud environments Strong understanding of cloud security tooling and monitoring capabilities Automation and scripting experience Experience with Terraform or other declarative infrastructure paradigms Good working...
-
Senior Information Security Engineer
4 tygodni temu
Warsaw, Polska Sportradar Pełny etatJob DescriptionJoin Our Team as a Senior Security Engineer at Sportradar! Are you ready to elevate your career in one of the fastest-growing sectors in the digital sports environment? At Sportradar, we provide a platform for you to gain international recognition for your expertise while working alongside industry leaders. This is more than just a job –...