Application Security Engineer

Within the SIXT Technology Team, you will work with Product engineering & Platform teams (solving through automations) who continually raise the bar in delivering best in class digital products and driving customer experiences forward and to new heights.

We are not only dealing with AWS technology and building best in class products with technology as backbone our primary focus is to constantly improve our security posture, systems by securing services through processes, framework, and automation.

What you’ll do? – Perform as smoothly as our cars:

• Providing security guidance on all new products and technologies within the organization.
• Collaborating with the engineering team & operations team to make a framework, process definition & measurement via KPIs so the product engineering teams can perform regular product security assessments & threat modelling.
• Providing security support and leadership (Subject matter expert) to the product engineering team.
• Define and implement secure coding training for product engineering teams.
• Managing the operations and effectiveness of the product security pipeline tools.
• Updating product security tooling to reduce false positives.
• Install and configure security tools.
• Responding to vulnerabilities disclosed through threat detection systems.
• Maintaining internal documentation and security standards to ensure security best practices are followed.
• Designing and implementing tools to automate and scale security processes.
• Supporting the incident detection and response processes.
• Continually assess security tools and framework and optimize.
• Challenge status quo of the organization’s security architecture and drive improvements.

Requirements

What do you need to succeed? – Your willingness to accelerate:

• B.Tech/B.E/ Master’s Degree in Computer Science or similar discipline.
• You have 6+ years of work experience as an Application/Product Security Engineer.
• You have 2+ years of experience in Threat Modelling & secure coding practices.
• You are proficient in multiple programming languages.
• You are proficient in security frameworks and standards.
• You have knowledge and deep understanding of SDLC frameworks, including proven track record of implementation and continuous improvements of such frameworks.
• You have experience and understanding with web application architecture and designed & secured applications.
• You have proficiency with security tools and technologies.
• You are a critical thinker and solve security problems via automation.
• You can work independently and drive security leadership and tasks.
• You have very good English language communication skill.
• You are a continual learner and adapt.
• You are good in team collaboration and teamwork.