Вакансия в архиве
Компания больше не ищет сотрудника. Посмотрите похожие предложения
Semrush

Application Security Business Partner (Application Security Team)

в Semrush

4 500 —‍ 5 000 €/мес на руки

📍 Амстердам (Нидерланды)Полная удалёнкаПомощь с переездом
Специализация
DevOps
Уровень
Senior
Команда
1 - 5 человек

Hi there!

We are Semrush, a global IT company developing our own product — a platform for digital marketers.

And this is our Application Security Business Partner for those who strive to implement functional processes and drive them to full completion.

Our new colleague, we are waiting for you!

Semrush is hiring remote specialists who have already relocated from Russia or willing to do it immediately.

Stack

CI/CDGitLab/GitHubYAMLGoJavaPython

About our company

  • Semrush is a leading online visibility management SaaS platform that enables businesses globally to run search engine optimization, pay-per-click, content, social media, and competitive research campaigns and gets measurable results from online marketing.
  • We’ve been developing our product for 13 years and have been awarded G2’s Top 100 Software Products, Global and US Search Awards 2021, Great Place to Work Certification, Deloitte Technology Fast 500, and many more. In March 2021, Semrush went public and started trading on the NYSE with the SEMR ticker.
  • 10,000,000+ users in America, Europe, Asia, and Australia have already tried Semrush, and over 1,000 people around the world are working on its development. The Semrush team is constantly growing.

About our team

We are an actively growing security team using modern security approaches and tools. We are proud of the high level of responsibility and results of our work. It motivates us to grow and contribute more to the company's success!

Semrush Security Department contains:

  • Application Security Team.
  • Infrastructure Security Team.
  • Common Flow & Compliance Team.

As Semrush continues to grow, so does our demand for simplifying and automating workflows to meet the needs of our internal teams, partners, and external users.

Semrush Security Department is a strong team. The famous security researcher Andrey Leonov and other talented guys are with us.

We speak at conferences, hold internal and external events (CTF, meetups), do research work, and train employees on how to find vulnerabilities and defend against them.

Application Security Team is working on complex and multi-layer software products. As a member of AppSec, you will also be able to participate in building secure software development processes. We are not limited to basic workflows such as DAST and SAST; we focus our efforts on scalable investments in our engineering ecosystem to identify and drive high-impact security initiatives.

We are hiring for a security partner role to support product development at Semrush. In this role, you will work closely with engineering teams building edge services, platform features, and backend infrastructure.

We are looking for security engineers who can be the voice of security in the defensive initiatives and identify the right security investments to help us build strong security processes.

Responsibilities

  • Participate in and support application security reviews that include threat modeling, design, and scanning results review.
  • Mentor and guide security champions in engineering teams.
  • Provide technical security guidance to mitigate identified risks.
  • Review existing processes and suggest improvements for increased security and efficiency.
  • Build security metrics to track the effectiveness of our security excellence programs.

The main goal is to build close partnerships with key areas in our engineering ecosystem to identify and drive high-impact security initiatives.

Our ideal next team member considers the security landscape holistically, understanding there are many possible approaches and tactics to reduce risks.

We are looking for

  • Knowledge of core application security principles, common security vulnerability classes, their root causes, and mitigations.
  • You are familiar with the modern web application development process.
  • You have an application security background, focusing on scalable approaches to product security.
  • You have experience with threat modeling, security design reviews, and security architecture.
  • You have excellent written and verbal communication skills and can translate security objectives to engineering team tasks.
  • You have experience partnering with cross-functional teams to deliver widely impactful security initiatives.
  • You demonstrate excellent judgment in prioritizing security efforts to mitigate the appropriate risks.

They say there are no perfect candidates, but that might well be you, if:

  • You have participated in bug bounty, HTB, or CTF and have the ability to confirm participation with links to the results.
  • You have experience with GitLab / GitHub CI/CD and YAML pipelines.
  • You know the subtleties, can read source code, and identify vulnerabilities in the code of one or more programming languages (Golang, Java, Python).
  • Knowledge of one of the programming languages at a level sufficient to automate routine tasks.

We offer

  • Health insurance coverage (up to 120 Eur / month).
  • Working from a modern coworking space (or working from home).
  • Commuting expense coverage — NL Business Card.
  • Internet coverage (up to 30 Eur / month).
  • Corporate events.
  • Annual paid vacation (25 days).
  • Training, courses, conferences.
  • English and Dutch courses.
  • Gifts for employees.

Semrush is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate based on race, religion, creed, color, national origin, sex, pregnancy, sexual orientation, gender identity, gender expression, age, ancestry, physical or mental disability, or medical condition, including medical characteristics, genetic identity, marital status, military service, or any other classification protected by applicable local, state or federal laws. All employment decisions are based on business needs, job requirements, merit, and individual qualifications.

Interview

  • At Semrush, we take a serious and comprehensive approach to hiring new people. We only welcome those who are professionals in their field and passionate about their work to join our team.
  • A “five-minute interview” or “get a job in three clicks” approach is not the way we work.
  • During the interview, we ask candidates to talk about themselves and their background in detail. We try to discover the most important aspects about the way someone works and their personality before a job offer is made.
Вероника Петровская IT Recruiter
Semrush

О компании Semrush

Сфера
Продуктовая компания
Инвестиции
$25-50М
Размер
1001+

Semrush — международная IT-компания, создают маркетинговую платформу. С помощью SEMrush можно отслеживать онлайн-стратегии конкурентов, оценивать свои успехи во многих маркетинговых сферах. Клиенты SEMrush-Booking.com, Twitter, Amazon, Hilton, Tripadvisor, Rentokil Initial и другие (более 5 миллионов пользователей).

Похожие вакансии

6 000 – 8 500 €/мес на руки
📍 Лимасол (Кипр), помощь с переездом
6 000 – 8 500 $/мес на руки
Полная удалёнка
6 000 – 8 000 $/мес на руки
📍 Европа, полная удалёнка
5 000 – 7 000 €/мес на руки
📍 Лимасол (Кипр), помощь с переездом
5 000 – 6 000 $/мес на руки
📍 Лимасол (Кипр), помощь с переездом