monday.com is looking for an application security expert to provide application security services including secure coding techniques and reviews, education & awareness, processes and tools, security testing support and guidance for internal software development projects. The Application Security Team is based in our headquarters, Tel Aviv, Israel - you’ll be joining another team member in London.
monday.com works hybrid with 3 days in the London office.
About The Role:
- Provide guidance on security best practices and compliance, and undertake security testing.
- Develop security testing plans and integrate them into the software development lifecycle.
- Perform and oversee security testing and manage remediation of identified vulnerabilities.
- End-to-end work on reported vulnerabilities as part of the bug bounty program.
- Identify Application security risks and requirements for new projects and system developments.
- Sign-off on application security prior to live implementation.
- Collaborate with the architecture and development teams to review the design and code for security vulnerabilities.
- Embed/improve security threat modeling and secure coding in the development lifecycle.
- Provide technical specialist advice to ensure that security standards are understood and can be complied with.
- Monitor and proactively report on current threats and vulnerabilities to application security.
- Prepare and monitor application security metrics and KPIs.
- Initiate and automate processes for detecting and monitoring the platform security and integrate security tools into the S-SDLC.
- Work with the local DevSecOps team to improve our S-SDLC and take part in our security incident response team
Social Title:
Application Security Expert
Social Description:
monday.com is looking for an application security expert to provide application security services including secure coding techniques and reviews, education & awareness, processes and tools, security testing support, and guidance for internal software development projects. The Application Security Team is based in our headquarters, Tel Aviv, Israel - you’ll be the first to join the team from Warsaw, Poland, where we have R&D, DevOps, and SecDevOps teams.
Meet the security team- read out blogpost:
https://www.startupforstartup.com/ww/blog/appsec-challenges-and-how-we-do-it/
Requirements
- At least 3 years of experience in software engineering.
- At least 2 years of experience in application security.
- In-depth knowledge of application security vulnerabilities, testing techniques, and the OWASP framework.
- Team player able to build relationships across the organization, also remotely
- In-depth understanding of secure web application development.
- Experience in web application and Agile development methodologies.
- Exposure to methods of promoting security awareness.
- Strong communication (verbal/written) and influencing skills, with an ability to manage internal and external relationships up to senior levels of management.
- Anticipates problems and identifies long-term implications of decisions and actions.
- Ability to work and learn alone.
- Able to prioritize workload and drive work to set deadlines.
- Experience working with the hacker/pen-testing community.
Meet the security team- read out blog post:
https://www.startupforstartup.com/ww/blog/appsec-challenges-and-how-we-do-it/
