Senior Security Engineer specializing in platform security initiatives across AWS, Kubernetes, and GCP for Preply. Leading security watch initiatives and partnering with cross - functional teams.
About the role
- Product Security Engineer focusing on ensuring software resilience against attacks during development phases. Collaborating with DevOps and Engineering teams to enhance security protocols.
Responsibilities
- Works directly with DevOps and Engineering teams to bake security into the Software Development Life Cycle (SDLC)
- Identifies potential attack vectors and suggests mitigations
- Triages bugs found via automated scanners, internal audits, or Bug Bounty programs
- Implements and manages tools like SAST, DAST, and SCA to catch insecure dependencies
- Performs manual 'deep dives' into critical codebases to spot logic flaws that automated tools might miss
- Acts as a subject matter expert when a security flaw is exploited in production
- Leads activities to find ways to bypass the logic to alter 'Recipe' files or production data
- Creates 'Security Champions' programs to teach engineers how to write defensive code
Requirements
- 4 to 6 years typical experience in similar roles
- Proficiency in at least one 'product' language (C# (.Net core), JavaScript, SQL)
- Deep understanding of the OWASP Top 10 (SQLi, XSS, CSRF) and cloud security (AWS/Azure/GCP)
- Experience with Snyk, Checkmarx, Burp Suite, or GitHub Advanced Security
- Familiarity with Docker, Kubernetes, and CI/CD pipelines (Jenkins, GitLab CI)
- Bachelor's Degree or consideration of an equivalent combination of education and experience
Benefits
- Celestica is an equal opportunity employer
- Special arrangements can be made for candidates who need it throughout the hiring process
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Security Engineer managing application and product security at Preply. Collaborating closely with engineering teams to enhance security across all stages of development.
Junior Consultant in Cyber Security for MKS4U IT - Beratungs GmbH focusing on security assessments and client consulting. Working in a hybrid environment from Hall in Tirol, Österreich.
Armed Security Officer providing security services for the Center for Disaster Preparedness contract. Responsible for maintaining security, access control, inspections, and enforcing compliance in Anniston, AL.
Security Administrator administering information security systems and compliance obligations at RBNZ. Collaborating in a supportive team to achieve business objectives and maintain security controls.
Security Business Architect role enhancing administration at Desjardins Group, a leading financial cooperative in North America.
Security Officer responsible for maintaining a secure environment at healthcare facilities. Patrols, responds to emergencies, and supports safety measures for staff and visitors.
Senior Security & Compliance Project Manager driving key initiatives across Criteo. Expertise in compliance standards and managing risks within security frameworks.
Site Security Officer supporting security operations at Saab Surveillance in Sweden. Managing risk analyses, security at events, and providing expertise on security projects.
Information Security Specialist responsible for protecting systems and data at Ituran. Collaborating with teams and ensuring compliance with security measures and regulations.