Работа Information Engineer
20 нови обяви за работа
-
Company Description Devexperts has been working for nearly two decades consulting and developing for the financial industry. We solve complex technological challenges facing the most well-respected financial institutions worldwide. By becoming a pa...
-
Пълно работно време Постоянна работа Възможност за работа от вкъщи Дистанционно интервю Job Description As a member of the Corporate Infrastructure and Security - Risk & Assessments team, the IT Security Engineer II is responsible for: Providing key input and assistance in the development and implementation of a global cybersecurity r...
- Пълно работно време Постоянна работа
Cloud Network & Security Engineer DSK Bank is one of the leading banks in Bulgaria, with a great IT team of more than 350 IT talents, experiencing professional growth and development every day. Now we are the biggest and fastest growing player on t...
- Пълно работно време Постоянна работа Възможност за работа от вкъщи Дистанционно интервю
About Akkodis: Akkodis is a global digital engineering consulting company that enables companies to advance in their digital transformation. Our 50,000 tech experts across 30 countries combine best-in-class technologies and cross industry knowledge ...
- Пълно работно време Постоянна работа
IT Security Strategic Development and Architecture Expert, Sofia DSK Bank is part of OTP Group – one of the leading banking groups in Central and Eastern Europe. Our amazing company is following an ambitious journey, which requires bright and mot...
- Пълно работно време Постоянна работа Възможност за работа от вкъщи Дистанционно интервю
About BULWORK: Bulwork, Bulgaria's first IT Recruitment agency, brings 25 years of excellence and industry expertise. The company has built a strong reputation for delivering high-quality services to both clients and candidates. We value each candid...
- Пълно работно време Постоянна работа Възможност за работа от вкъщи Дистанционно интервю
About Akkodis: Akkodis is a global digital engineering consulting company that enables companies to advance in their digital transformation. Our 50,000 tech experts across 30 countries combine best-in-class technologies and cross industry knowledge ...
- Пълно работно време Постоянна работа Възможност за работа от вкъщи Дистанционно интервю
HEAD OF IT SECURITY OPERATIONS About BULWORK: Bulwork is Bulgaria’s first recruitment agency specializing in IT and FinTech, backed by 25 years of market excellence. The company has earned a solid reputation for excellence in serving both clients...
- Пълно работно време Постоянна работа
Cloud Network & Security Engineer DSK Bank is one of the leading banks in Bulgaria, with a great IT team of more than 350 IT talents, experiencing professional growth and development every day. Now we are the biggest and fastest growing player on t...
-
3,790 лв - 4,100 лв / месец (нето) от работодател Пълно работно време Постоянна работа Възможност за работа от вкъщи UpSkill is a recruitment agency ready to go the extra mile to help candidates find the best possible job opportunity. Our team of experts is well-versed and experienced in consulting and providing long-term HR support. We believe that being friendly...
-
RecruityTalent is a Recruitment agency with focus of IT, supporting startups and enterprises in Bulgaria, EMEA and LATAM by connecting them with top talent. About the Role We are looking for an experienced Lead Security Engineer. What You’ll Do ...
- Пълно работно време Постоянна работа Дистанционно интервю
We are looking for a proactive and curious individual to join us as a Junior Expert in IT Service and Security Operations. This entry-level position offers an excellent opportunity to build hands-on experience across system monitoring and security op...
- Пълно работно време Постоянна работа Възможност за работа от вкъщи Дистанционно интервю
We are seeking a capable and motivated IT Service and Security Operations Expert to join our cross-functional operations team. This position sits at the intersection of system reliability and first-line event handling, contributing to the effective o...
- Пълно работно време Постоянна работа Дистанционно интервю
We are looking for a proactive and curious individual to join us as a Junior Expert in IT Service and Security Operations. This entry-level position offers an excellent opportunity to build hands-on experience across system monitoring and security op...
- Пълно работно време Постоянна работа Дистанционно интервю
About Akkodis: Akkodis is a global digital engineering consulting company that enables organizations to innovate and accelerate by applying technology to redefine how processes and products are developed, powered and optimized. With deep expertise ac...
Какво е това?
Това е изчисление на Yox за приблизителната работна заплата за тази позиция. Посочената стойност не е потвърдена от работодателя и може да се различава с реалната стойност на предлаганото възнаграждение.
Как се смята?
Изчислена Заплата е приблизителната стойност на възнаграждение за конкретната позиция на базата на данни от стотици хиляди обявени заплати по професия за последните 2 години. В Yox се предоставя и информация за заплатите от служители, която също е част от изчислението.
Защо тази информация е полезна?
Можеш да разбереш приблизителната заплата за тази позиция. Можеш и да филтрираш списъкът с обявите за работа по размер на работната заплата.
Пълно описание
Company Description
Devexperts has been working for nearly two decades consulting and developing for the financial industry. We solve complex technological challenges facing the most well-respected financial institutions worldwide.
By becoming a part of Devexperts, you’ll become a part of a company that fosters self-improvement and actively seeks out-of-the-box ideas. Our teams work together to create the next generation of financial software solutions. We welcome all candidates who believe, as we do, that innovation is grounded in education.
Job Description
We are looking for an Application Security Engineer to join the Information Security Team.
The Application Security Engineer will work closely with software development teams, product owners, and stakeholders to design, implement, and maintain robust security practices throughout the software development lifecycle (SDLC). The Application Security Engineer will be responsible for identifying and mitigating security vulnerabilities within applications, systems, and APIs, ensuring secure coding practices, and helping to maintain compliance with relevant security standards such as OWASP Top 10, NIST, and ISO/IEC 27001.
This role will play a crucial part in strengthening the organization’s security posture, promoting security best practices, and ensuring the safety and integrity of the company’s software applications.
We expect the Application Security Engineer to:
Qualifications
Required Skills and Experience:
Preferred Qualifications:
Additional Information
Care for the employees is one of Devexperts' core values. For the suggested position, we offer a benefits package that will guarantee the comfort of our new teammate.
Flexibility benefits:
Health and recreation benefits:
Facility benefits:
Community benefits:
Professional training benefits:
Social benefits:
Devexperts has been working for nearly two decades consulting and developing for the financial industry. We solve complex technological challenges facing the most well-respected financial institutions worldwide.
By becoming a part of Devexperts, you’ll become a part of a company that fosters self-improvement and actively seeks out-of-the-box ideas. Our teams work together to create the next generation of financial software solutions. We welcome all candidates who believe, as we do, that innovation is grounded in education.
Job Description
We are looking for an Application Security Engineer to join the Information Security Team.
The Application Security Engineer will work closely with software development teams, product owners, and stakeholders to design, implement, and maintain robust security practices throughout the software development lifecycle (SDLC). The Application Security Engineer will be responsible for identifying and mitigating security vulnerabilities within applications, systems, and APIs, ensuring secure coding practices, and helping to maintain compliance with relevant security standards such as OWASP Top 10, NIST, and ISO/IEC 27001.
This role will play a crucial part in strengthening the organization’s security posture, promoting security best practices, and ensuring the safety and integrity of the company’s software applications.
We expect the Application Security Engineer to:
- Conduct regular security assessments of applications, including code reviews, static/dynamic analysis, and penetration testing.
- Collaborate with development teams to design and implement security controls and integrate security into the software development lifecycle (SDLC).
- Lead and participate in the identification and remediation of security vulnerabilities in applications, APIs, and third-party services.
- Provide security guidance on secure coding practices, threat modeling, and vulnerability management to development teams.
- Implement and enforce security best practices for secure coding, API security, and encryption across application architectures.
- Stay up-to-date with the latest security threats, vulnerabilities, and trends, applying relevant knowledge to mitigate risks in applications.
- Develop and maintain automated security testing tools, frameworks, and processes for continuous security integration within CI/CD pipelines.
- Support risk assessments and threat modeling for new and existing applications, helping to prioritize security remediation efforts.
- Participate in incident response activities related to application security, providing expertise to investigate and remediate security breaches.
- Create and deliver security training and awareness programs for developers to promote a culture of security within the development teams.
- Support vulnerability management and remediation efforts, tracking and verifying the resolution of identified issues.
- Ensure compliance with internal security standards and external regulatory requirements (e.g., GDPR, PCI-DSS, HIPAA).
- Collaborate with cross-functional teams, including DevOps, infrastructure, and security operations, to ensure a cohesive approach to application security.
Qualifications
Required Skills and Experience:
- Bachelor’s degree in Computer Science, Information Security, Software Engineering, or a related field.
- Over 3 years of hands-on experience in application security, with a focus on securing web applications, APIs, and cloud-based environments.
- Proficiency with application security tools such as static and dynamic analysis (SAST, DAST), vulnerability scanners, and penetration testing tools.
- Knowledge of secure coding practices and frameworks (OWASP, NIST, etc.) and experience applying them to real-world software development.
- Familiarity with common vulnerabilities (e.g., OWASP Top 10) and mitigation strategies.
- Experience with source code analysis, including manual and automated code reviews, security testing, and debugging.
- Experience working in a DevOps or Agile development environment, including integration of security practices into CI/CD pipelines.
- Understanding of web application security, including session management, access control, and authentication mechanisms.
- Proficient in at least one programming language (e.g., Python, Java, JavaScript, Ruby, etc.) and ability to read and understand code.
- Strong knowledge of networking concepts, HTTP/HTTPS protocols, web servers, and security protocols (TLS, SSL, etc.).
- Excellent problem-solving and analytical skills, with the ability to think like an attacker and identify security weaknesses in applications.
- Strong communication skills, with the ability to collaborate effectively with technical and non-technical stakeholders.
Preferred Qualifications:
- Certifications such as CEH, CSSLP, GWAPT, CASE, OSWE or other relevant cybersecurity certifications.
- Experience with cloud platforms (AWS, Azure, GCP) and security best practices for cloud-native applications.
- Familiarity with threat modeling techniques and tools (e.g., OWASP Threat Dragon, Microsoft SDL).
- Experience with CI/CD and DevSecOps processes and tools.
- Knowledge of container security (Docker, Kubernetes) and microservices architecture.
- Experience with application security tools such as SonarQube or Veracode for static and dynamic analysis.
Additional Information
Care for the employees is one of Devexperts' core values. For the suggested position, we offer a benefits package that will guarantee the comfort of our new teammate.
Flexibility benefits:
- Possibility of hybrid/remote work mode,
- Flexible working hours.
Health and recreation benefits:
- 20 days of paid vacation,
- 5 days of fully paid additional wellness days,
- Medical insurance – premium package,
- Free MultiSport card.
Facility benefits:
- Modern office with new equipment,
- Panoramic view of Vitosha mountain,
- PlayStation, Billiard, Relax zone and Gym,
- Parking space/public transport card,
- Free drinks and snacks.
Community benefits:
- Teambuilding activities,
- Corporate parties,
- Football club,
- Speakers' club,
- Free admission to corporate external events,
- Possibility of joining conferences and professional fairs.
Professional training benefits:
- English language courses,
- Local language courses for foreign employees,
- Unlimited access to self-learning platforms,
- Certification opportunities,
- Mentorship Program.
Social benefits:
- Referral bonuses for specific roles,
- Paid leave upon special events.
Социални Придобивки
- health_and_safety iconДопълнително Здравно Осигуряване
- trainКарта за Градски Транспорт
- schoolБезплатни Обучения/Курсове
- event_seatСеминари и Конференции
- sports_footballКарта за Спорт
- emoji_food_beverageБезплатни Напитки
Средна заплата за сектора
5,140 лв / месец (изчислена от Yox)
Средна работна заплата за града изчислена от YOX
минимална
2,500 лв / месец
максимална
12,500 лв / месец
Мнения и оценки от служители
4.0
Добра 
4.1
3.9
3.5
3.6
4.0
3.5
3.7
3.3
3.6
3.3
3.6
Инженер, сигурност на икт
Инженерите по сигурността на ИКТ предлагат и внедряват решения за контрол на достъпа до данни и програми и осигуряват защитата на мисията и бизнес процесите на организацията. Инженерите по сигурността на ИКТ са пазачите на информационния вход в дадена организация или на даден продукт, като отговарят за защитата и сигурността на свързаните системи. Те отговарят за мрежата и системите от гледна точка на сигурността и проектират, планират и осъществяват архитектурата за информационна сигурност на системата, включително еталонни модели, архитектури на сегментите и решенията и политики и процедури за сигурност. Те актуализират и осъвременяват системите за сигурност в отговор на свързани със сигурността инциденти. Инженерите по сигурността на ИКТ си сътрудничат с екипа по сигурността при идентифицирането, валидирането и налагането на изисквания и участват в подбора на цели, валидирането, синхронизирането и изпълнението на кибердействия. Те си сътрудничат с други проектанти, оператори и/или анализатори, за да предоставят анализ след събитието.
Необходими основни умения
- управление на съответствието по отношение на сигурността на ИТ
- извършване на анализ на риска
- информираност за най-новите решения за информационни системи
- предоставяне на консултации относно ИКТ
- извършване на анализ на данни
- отстраняване на проблеми
Необходими основни знания
- стратегия за информационна сигурност
- информационна архитектура
- стандарти за сигурност на ИКТ
- новопоявяващи се технологии
- вектори на атака
- мерки за противодействие на кибератаки
Финален преглед
Увери се, че информацията е точна и ако всичко е наред натисни „Изпрати“ и твоята кандидатура отива незабавно за преглед в .
Вие се съгласявате с общите условия на Yox. При натискане на кандидатствай: 1) вие се съгласявате с общите условия на Yox, Политиката за Поверителност и Политиката на използване на бисквитките. Съгласявате се и разрешавате вашето резюме да може да бъде изпратено към работодателя (не е гарантирано получаване) и да продължи да се обработва и анализира съгласно нашите условия и политики. Натискайки „Изпрати“се съгласяваш с на Yox.bg
Честито, вашето резюме беше изпратено успешно!
При интерес от работодателя очаквайте връзка на посочените от вас контакти.