Application Security Engineer

Kharkiv/Lviv, Ukraine · SY · 31 August, 2018 expand job description ↓

Description

Join our team of cryptocurrency and security professionals and get involved in this cutting-edge business project!

We are developing a fully-fledged, extremely flexible platform that enables:

1. Easy-start trading in the crypto-world and withdrawal of cash-on-demand anytime

2. Transference of all forms of value like fiat currencies, digital currencies, asset tokens or securities

3. Running stock exchange and getting real-time market pricing

4. Managing accounts and obtaining real-time balances

You will be engaged in the design and implementation of a flexible engine for the full-cycle of Initial Coin and Token Offerings (ICOs) with a unique customizable rule engine, distributed ledger technologies, mobile payment gateways, comprehensive, world-class security frameworks and lots of other tremendous features, scaling the solution.

Dev-Pro will participate in both backend and frontend development as soon as PCI DSS certification is attained.

Dev-Pro participates in both backend and frontend development. Frontend part is based on Angular 4.0, backend on ASP.NET Core. Also, the project is PCI DSS compliant.


Responsibilities

This position will involve:

  • Performing manual and automated application, APIs, web services and network vulnerability assessments and document vulnerabilities, and provide recommendations for remediation
  • Performing research into potential attack vectors (such as APIs, web app, network security, etc.)
  • Performing manual code reviews on systems to identify vulnerabilities, to complement automated vulnerability assessments
  • Developing automated security tests that can be integrated into a product’s automated test suites
  • Providing security recommendations as the subject matter expert for development teams during all phases of development
  • Validating vulnerability resolutions and ensure they are deployed to production in a timely manner
  • Participating in the change management process, ensuring that all releases are reviewed by security before being approved for production
  • Providing guidance to application groups on application security best practices

Requirements

Required skills

  • 3+ years’ experience in application security
  • Experience with various programming languages (preferred C#, .Net, JavaScript)
  • Experience with enterprise application security solutions such as HPE Fortify SSC
  • Experience with Cloud solutions such as Microsoft Azure or AWS
  • Experience with source control, agile development, bug tracking, build automation, and change control platforms, e.g. implementing security assessments within a continuous integration process
  • Ability to work independently with minimum supervision to meet firm deadlines
  • Knowledge of common web application vulnerabilities (OWASP Top 10)


Desired skills

  • Practical experience working with PCI DSS

Benefits

  • 18-20 paid time off days per year
  • 5 absence due to illness days and 21 day of extraordinary medical leave per year
  • Medical Insurance and Healthcare Kit
  • Extensive corporate professional training programs, workshops, ESL and conferences
  • Team buildings, corporate parties and Dev-Pro Hangouts
  • Relocation package
  • Visa support
Personal information
Your Profile
Application Details