Remote Security Engineer | Mid - Senior | WebSec Team

Description:

• The Security Engineer position is part of the WebSec Team at NordVPN, located in Vilnius or Kaunas, and offers a full-time remote work option.
• The main responsibilities include securing backend applications, networking components, and crypto services, utilizing various testing methods such as white, grey, or black box testing.
• The role requires demonstrating reverse engineering skills to identify bugs in advanced security solutions.
• The engineer will design and create solutions for complex security issues from scratch and develop scripts and security automation tools to enhance penetration testing processes.
• Collaboration with backend application developers and other technical team members is essential to validate, assess, understand the root cause, and mitigate vulnerabilities.
• The position also involves sharing security knowledge with colleagues across the organization.

Requirements:

• Candidates must have proven experience in application security assessment planning, testing, and vulnerability reporting.
• Proficiency in using security scanners, static code analyzers, and debuggers is required.
• A strong understanding of networking, including SSL/TLS, and the ability to explain concepts such as ciphers, PFS, keys, PKI, and certificates is necessary.
• Demonstrated ability to perform manual security code audits is essential.
• Previous experience with fuzzing, reverse engineering, and exploit development is required.
• Experience working with application developers to validate, assess, understand the root cause, and mitigate vulnerabilities is necessary.
• Strong knowledge of application and infrastructure testing methodologies is required.
• Knowledge in architecture design and assessment, particularly manual penetration testing, is essential.
• Bonus points will be awarded for community contributions such as public CVEs, bug bounty recognition, open-source tools, blogs, etc.

Benefits:

• Employees will have access to Nord Security products, allowing them to experience the solutions used by millions of users worldwide at no charge.
• The company offers professional growth opportunities through internal and external events, online training, conferences, and access to books.
• Health benefits include private health insurance, a sports access card, online workouts, consultations, and programs aimed at improving mental health.
• Mental wellbeing support is provided through access to mental health tools like Calm, Headspace, and Mindletic, along with options for therapy.
• The company promotes team spirit through team buildings and parties that include games, shows, tastings, food coupons, and gifts.
• Additional paid leave is offered for illness or special occasions.
• Employees enjoy flexibility with working time arrangements.