As a Senior Security Engineer, you will play a crucial role in identifying, assessing, and mitigating security risks related to applications. You will work in a dynamic environment on the line between the responsible product teams and security, not just ensuring a security-by-design approach but also making sure that Security is being taken into account throughout the Software Development lifecycle.
INCLUSIVE BY DESIGN
At Zalando, our vision is to be inclusive by design. And this vision starts with our hiring - we do not discriminate on the basis of gender identity, sexual orientation, personal expression, ethnicity, religious belief, or disability status. You are welcome to leave out your picture, age, or marital status from your application. We only assess candidates on their qualifications and merit.
We want to provide you with a great candidate experience. Feel free to inform us of any accommodations you may need, so we can best support you throughout the hiring process.
do.BETTER - our diversity & inclusion strategy: https://corporate.zalando.com/en/our-impact/dobetter-our-diversity-and-inclusion-strategy
Our employee resource groups: https://corporate.zalando.com/en/our-impact/our-employee-resource-groups
WHAT WE’D LOVE YOU TO DO (AND LOVE DOING)
Collaborate with cross-functional teams to develop secure applications, incorporating security-related regulatory requirements, industry standards, and best practices.
Provide advice, guidance, and hands-on support for security strategies to manage identified security risks and ensure the adoption of mitigation/remediation strategies.
Carry out application security assessments, including threat modelling, SAST analysis, manual code reviews, and coordinate penetration tests.
Build solutions and automated processes that enable stakeholders to develop secure applications more effectively and efficiently.
Educate and train stakeholders on application security best practices.
WE'D LOVE TO MEET YOU IF…
You have a minimum of 5 years of experience in application security or secure development.
You possess a solid understanding of application security frameworks like OWASP and show a strong capability of secure coding practices and their implementation as part of CI/CD pipelines and the software development lifecycle.
You have a deep understanding of cloud security and containerization technologies.
You demonstrate a strong sense of ownership and entrepreneurial & analytical thinking, adding to your excellent communication skills (fluent in written & spoken English is a must) and willingness to share knowledge within and outside the team.
You are capable of automating security testing processes.
You possess experience with system, network, and on-prem infrastructure.
OUR OFFER
Zalando provides a range of benefits, here’s an overview of what you can expect. Ask your Talent Acquisition Partner to learn more about what we offer.
Employee shares program;
40% off fashion and beauty products sold and shipped by Zalando, 30% off Zalando Lounge, discounts from external partners;
2 paid volunteering days a year;
Hybrid working model with up to 60% remote per week, actual practice is up to each team to best support their collaboration;
Work from abroad for up to 30 working days a year;
27 days of vacation a year (for Zalando SE);
Relocation assistance available (subject to prior agreement);
Family services, including counseling and support;
Health and wellbeing options (including Gympass);
Mental health support and coaching available.