Senior Security Engineer AppSec

🇩🇪 Germany - Remote
🔒 Cybersecurity🟣 Senior

Job description

The role

We’re looking for a new teammate to join us on the journey of keeping HelloFresh a trusted name - someone with a passion for security and appetite for new challenges. Security Engineers work in a variety of ways to constantly iterate and improve HelloFresh’s security posture.

You will be part of the squad responsible for maintaining and improving HelloFresh’s Vulnerability Management Program which provides umbrella coverage to Pentest, Red Teaming, Cloud Assessment, Source Code Review, use of vulnerable dependencies, Supply Chain Audits and Bug Bounty program.

What you’ll do

  • Perform network/cloud penetration, web and mobile application testing, source code reviews, threat analysis, wireless network assessments, and social-engineering assessments
  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences
  • Effectively communicate findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel
  • Use formal project management skills in planning, tracking, and reporting to close the remediation loop
  • Recognize and safely utilize attacker tools, tactics, and procedures used to perform analysis and identify vulnerabilities
  • Develop scripts, tools, or methodologies to improve HelloFresh’s Vulnerability Management Program

What you’ll bring

  • 4-7 years’ experience demonstrating above average ability in any 4 of the following areas of offensive security: Network, Wireless, Cloud, Web, Mobile, API Assessments, Source Code Review, Red Teaming, Social Engineering
  • Thorough understanding of network protocols, data on the wire, client-server model, application design and architecture, and different classes of application security flaws
  • Proven proficiency in one modern scripting language like Python or Go
  • Relevant application penetration testing certifications such as Offensive Security Web Expert (OSWE) certification, GIAC Web Application Penetration Tester (GWAPT), or equivalent mobile/web certification
  • Participation in web hacking challenges, competitions or bug bounties
  • Development of tools or plugins used to conduct security testing and analysis
  • Developing, extending, or modifying exploits, shellcode or exploit tools
  • Source code review for control flow and security flaws
  • Strong knowledge of tools used for cloud, wireless, web application, and network security testing

What we offer

Elevate your lifestyle! Join one of Europe’s fastest-growing tech powerhouses in a dynamic phase of expansion.

  • Immerse yourself in a diverse global community of 90+ nationalities.
  • Enjoy a competitive compensation package that goes beyond the norm, with perks like a HelloFresh- subsidized Pension Scheme, Berlin relocation support, and a Hybrid working model.
  • Elevate your lifestyle with exclusive discounts on your weekly HelloFresh box and office meals.
  • Invest in your growth with a German language learning budget, and access to the HelloFresh Academy.
  • Plus, we’ve got your well-being covered with mental health support, transportation perks, and working-parent-friendly benefits. From our 247 gym access,wellbeing platforms like Headspace and Spill, to sabbatical leave options, HelloFresh is not just a workplace; it’s a lifestyle of perks and possibilities!

#IT #Security

Share this job:
Please let HelloFresh know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

HelloFresh logo

HelloFresh

  • 10001+ employees
  • Founded in 2011
  • 15 remote jobs

Latest Jobs at HelloFresh

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply