Application Security Engineer

Veeam, the #1 global market leader in data resilience, believes businesses should control all their data whenever and wherever they need it. Veeam provides data resilience through data backup, data recovery, data portability, data security, and data intelligence. Based in Seattle, Veeam protects over 550,000 customers worldwide who trust Veeam to keep their businesses running. Join us as we move forward together, growing, learning, and making a real impact for some of the world's biggest brands. The future of data resilience is here - go fearlessly forward with us.

About the Role

Join us as an Application Security Engineer and help shape the security of Veeam products, enhancing data protection and driving business resilience.

What You'll Do

• Conduct regular security assessments, vulnerability scanning, and penetration testing of Veeam products and services
• Work with development teams to integrate secure development practices into the software development lifecycle
• Collaborate on the design and implementation of security within Veeam products
• Threat modelling and design reviews for new and existing Veeam products
• Conducting manual source code security audits
• Using automated application-analysis tools

What You'll Bring

• Ability to read source code on programming languages (such as C/C++/C#/JavaScript)
• A good understanding of the principles of secure software development
• A desire to develop in the field of application security
• A lively and flexible mind, clear logic, and analytical skills
• The desire and ability to work as part of a team
• English proficiency for daily communication within international teams

Bonus Skills

• Knowledge of scripting languages (Python, PowerShell, Bash, Ruby, etc.)
• Knowledge of modern cryptographic algorithms
• Experience with DAST and SAST tools
• Skills using OWASP ZAP, Burp Suite, Kali Linux tools
• Certifications such as OSCP, CEH, CSSLP, CCSP, AWS Certified Security, etc.
• Familiarity with cloud platforms (such as AWS/Azure/GCP)
• Experience playing CTF
• Experience with HackTheBox
• Experience with bug bounty hunting

What You'll Get

• 26 paid days off annually plus three global VeeaMe Days for self-care and paid volunteer time
• Paid parental, maternity, and paternity leave
• Fully covered family medical plan, dental, rehab, and vaccinations
• Life, critical illness, and disability insurance
• Employer pension contribution via PPK
• Monthly lunch and wellness benefits
• Six free therapy sessions, plus legal and financial advice
• Professional training and education, including courses and workshops, internal meetups, and unlimited access to our online learning platforms (LinkedIn Learning, Athena, O'Reilly) and mentoring through our MentorLab program

Please note: If the applicant is permanently present outside of Poland, Veeam reserves the right to refuse to consider the application for a job. Remote job is only possible in case the employee is located in Poland.

#LI-AR1
#Remote

Veeam Software is an equal opportunity employer and does not tolerate discrimination in any form on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state or local law. All your information will be kept confidential.

Please note that any personal data collected from you during the recruitment process will be processed in accordance with our Recruiting Privacy Notice.  

The Privacy Notice sets out the basis on which the personal data collected from you, or that you provide to us, will be processed by us in connection with our recruitment processes. 

By applying for this position, you consent to the processing of your personal data in accordance with our Recruiting Privacy Notice.

By submitting your application, you acknowledge that the information provided in your job application and any supporting documents is complete and accurate to the best of your knowledge. Any misrepresentation, omission, or falsification of information may result in disqualification from consideration for employment or, if discovered after employment begins, termination of employment.

---