IT Application Security Engineer

Are you passionate about securing applications, uncovering vulnerabilities, and ensuring the highest level of data protection? Do you thrive in fast-paced, dynamic environments where your skills and expertise can make a tangible impact? If so, we have an exciting opportunity for you to become a part of our team!

Responsibilities:

• Collaborate with cross-functional teams to develop and implement robust security measures across applications and infrastructure.
• Conduct both static and dynamic testing, utilizing tools such as ZAP, Burp, and SAST tools to identify and address vulnerabilities in code.
• Perform code security reviews in Java, C#, Python, and/or Go, ensuring the highest standards of security are maintained.
• Drive application penetration testing efforts, utilizing Burp and ZAP, to uncover potential vulnerabilities.
• Champion DevOps practices by establishing build, test, and data pipelines in cloud environments.
• Utilize your expertise in VMWare and Docker for OS and network security.
• Contribute to the deployment and security of applications in Kubernetes environments.
• Implement Infrastructure as Code principles using tools like Terraform and Helm Charts.
• Leverage your Azure DevOps knowledge to streamline pipeline deployments (advantageous).
• Engage in high-intensity short sprints, adapting tooling and strategies to suit specific projects and technology stacks.
• Engage in research and proof of concept efforts to explore and implement new security technologies.
• Take end-to-end ownership of hosting application security, including virtual machines, containers, networks, and VPNs.

Requirements:

• Junior Level (1 year experience):

  • Bachelor's degree in Computer Science or related field.
  • Solid foundation in application security concepts.
  • Familiarity with code review practices and vulnerability identification.
  • Basic experience with tools such as ZAP, Burp, or similar.
  • Exposure to cloud environments is a plus.

• Senior Level (4-5 years of experience):

  • Proven experience in code security review across Java, C#, Python, or Go.
  • Extensive hands-on experience with application penetration testing using tools like ZAP and Burp.
  • DevOps expertise, including setting up build, test, and data pipelines in cloud environments.
  • Proficiency in VMWare and Docker for OS and network security.
  • In-depth experience with Kubernetes deployment and management.
  • Familiarity with Infrastructure as Code principles using Terraform and Helm Charts.
  • Knowledge of Azure DevOps for pipeline deployment is advantageous.
  • Strong leadership skills; ability to take ownership and guide the team.
  • Passion for security research and open-source contributions.
    
    
    Project details
• • Location: Amsterdam
• • Duration: 12 Months (Contract to perm)
    Type: Freelance/Payroll

Michael Bailey International is acting as an Employment Business in relation to this vacancy.