Senior Security Engineer

Tech/IT


Description

Position at Talabat

Your mission
  • Champion security with development teams to make their code more secure, primarily through manual code/architecture review
  • Perform security assessments on a wide range of developed applications services and networks
  • Conduct security-centric code reviews of new and legacy applications and services to identify security vulnerabilities
  • Collaborate with the responsible engineers to resolve identified security weakness
  • Create, implement and maintain security automation tools as required
  • Act as technical leader for security incident management and related forensics analysis
  • Develop secure coding resources for engineers ranging from wiki articles to master classes covering both standardized topics like OWASP Top 10 to custom tailored content to address common issues
  • Provide security event analysis and escalation for identified threats
Your heroic Skills
  • Bachelor's degree in Computer Science, Information Security or equivalent experience required
  • Proficiency in C# (other languages like C, C++, Python, Java, Ruby, assembler are a plus)
  • You have ability to read and break code in C# (other languages like Python, Java, C/C++ and PHP are a plus)
  • Working knowledge of common application and network security assessment tools and techniques
  • Experience with different types of attack vectors like DoS/DDoS, SQL injection, Session Hijacking, Cross Site Scripting (XSS)...etc.
  • Experience with vulnerability management (identifying, tracking, prioritizing, and collaboration with responsible teams to resolve)
  • Experience working with network security and analysis tools such as IDS/IPS, sniffers, WAFs, firewall ACLs is a plus
  • Working history of performing security assessments in cloud environments is a plus
  • Extensive experience working with distributed systems, including deep understanding of UDP & TCP protocols
  • Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
  • Certifications like CEH, OSCP, OSCE are a plus
  • Team player who can get along with others both inside and outside the company
  • Enjoys working in an accomplishment-oriented, fast-paced environment
  • Fluency in English (verbal and written)