Senior Application Security Engineer

Sector: Financial ServicesLocation: Fully remote (within Poland)Type: B2B freelance contractDuration: 6 months (scope for extension 2+ years)Rate: Market rate (competitive)What You Will Do

• Perform threat modeling, architecture and design reviews. Help design hard-to-break applications and services.
• Take an active role in architectural decisions. Work with engineering teams and drive security improvements.
• Continuously build and improve our security tooling, automation and processes.
• Perform security assessment (code reviews and penetration testing) of our services.
• Contribute to the internal engineering security community.

Who we AreThe team is missioned to empower engineers to design, build, and deliver secure software swiftly through standardized tools and processes, continuous learning, and fostering a security-focused culture within our engineering division.We help engineering prevent and solve flaws that arise in the planning and development phases through architecture reviews, threat modeling, and various automated tools and processes.Awesome to Have

• A pragmatic approach to solving security issues in ways that achieve the best effect
• Great problem-solving abilities
• Experience in writing and reviewing code in at least one of the following programming languages: JavaScript (NodeJS), Python, Go, Erlang, Java or Scala
• Advanced knowledge and understanding in various disciplines: web application security, mobile app security, network security, operating system internals and hardening, applied cryptography, cloud computing. You're expected to be an expert in at least one of these areas.
• Working proficiency in English

Nice to Have

• Experience in penetration testing, source code review, design review, threat modeling, security mitigation development, or security tooling development
• Participating in BugBounty and CTF
• Effective communication skills that engage your audience