Security Engineer

Про позицію

Kiss My Apps is a platform company uniting 7 product verticals and over 30 AI-first products with 100+ million users. They are looking for a Security Engineer to integrate security into development processes, CI/CD, and product infrastructure, building Security processes from scratch.

Обовʼязки8

• Building and implementing Secure SDLC practices in development processes
• Integrating SAST/DAST/SCA and other security scanners into CI/CD pipelines
• Identifying, analyzing, and accompanying the remediation of vulnerabilities in applications and dependencies
• Automating basic phishing protection mechanisms and security controls
• Consulting engineering teams on secure coding and security practices
• Conducting security training and raising team's awareness
• Participating in monitoring and responding to security incidents
• Assisting in implementing asset and risk management approaches

Вимоги10

• 2+ years of experience in Security / DevSecOps / AppSec
• Practical experience in implementing Secure SDLC or DevSecOps practices
• Experience with SAST / DAST / SCA / container or dependency scanning
• Experience integrating security checks into CI/CD (GitHub Actions, GitLab CI, Jenkins, etc.)
• Deep understanding of OWASP Top 10 and common vulnerabilities in web/mobile applications
• Experience in vulnerability management (identification, prioritization, remediation)
• Practical experience using AI-driven security platforms for vulnerability analysis in code, dependencies, and cloud infrastructure (GitHub Advanced Security, Wiz Security Graph, Socket.dev or similar solutions)
• Basic understanding of cloud infrastructure and DevOps approaches
• Ability to read and analyze code (Node.js or similar backend languages)
• Systematic thinking and ability to build security processes

Переваги8

• Fully remote work from any free location or access to one of their offices if desired (Kyiv, Warsaw)
• Competitive compensation based on skills and experience
• Career growth opportunities
• Team activities including online yoga sessions twice a week
• Internal speaking clubs in English with native speakers
• Annual budget to cover 50% of professional conferences, educational events, and activities
• Fixed annual budget for health insurance, psychotherapy, or sports expenses and 40 days of paid vacation and sick leave
• Support during wartime with necessary work provisions and contributions to defense forces