Offensive Security Engineer, Senior (m/f/d)
Affinidi
·
Posted:
August 29, 2023
·
Onsite
About the position
Affinidi is seeking a highly skilled and experienced Senior Offensive Security Engineer to join their Security team in Berlin, Germany. In this role, you will be responsible for implementing a shift-left security approach, conducting penetration tests on various applications and infrastructure, defining secure development standards, engaging in security research and threat modeling, and offering expert code review to identify vulnerabilities. You will also collaborate with other security teams and provide security guidance to engineering and operational teams. This is an opportunity to contribute to Affinidi's mission of creating a trusted digital credentials ecosystem and empowering businesses and individuals to securely exchange data and services.
Responsibilities
- Implementing a shift-left approach to security and performing penetration tests on Web apps, Mobile apps, APIs, and Infrastructure.
- Establishing secure development standards and providing security advisory to development teams.
- Conducting security research and penetration testing across various products.
- Full-stack (Infra & Product security) grey and white box penetration testing.
- Creating and Implementing Threat Modelling.
- Utilizing code review skills to identify complex vulnerabilities within code.
- Offering security guidance to engineering and operational teams.
- Developing security tools for threat detection and prevention.
- Collaborating with other security teams to share insights and knowledge.
- Experience in infrastructure vulnerability assessments and remediation.
- Expertise in web-based vulnerability assessments (Pentest).
Requirements
- Highly skilled and experienced Senior Offensive Security Engineer (m/f/d)
- Implementing a shift-left security approach
- Conducting web apps, mobile apps, API's, microservices, and infrastructure penetration tests
- Defining secure development standards
- Engaging in security research and threat modeling
- Expert code review to identify vulnerabilities
- Based in Berlin, Germany
- Reports to the Security Lead
- Experience in infrastructure vulnerability assessments and remediation
- Expertise in web-based vulnerability assessments (Pentest)
Benefits
- Hybrid working model
- Flexible working hours
- Unlimited vacation policy
- Competitive compensation package
- Work within international environment
- Learning Budget
- Mobile Allowance
- Home Office Allowance
- Urban Sport Membership