Application Security Engineer
Descrizione dell'offerta
Join our Movement and Champion Restaurant Culture
At TheFork we believe that the best things in life happen around the table, and we are on a mission to connect the world’s favorite restaurants and the broadest community of loyal diners.
Finding The Best Dining Experience for Our Diners Community or Boosting Restaurant Performance for Our Restaurateurs Partners has never been easier thanks to our Signature Products.
TheFork App: Our free restaurant discovery & booking app that helps you find your next table with ease.
TheFork Manager: Our innovative software tool that digitizes restaurant operations, empowering our Restaurateurs to manage bookings efficiently and boost their revenue.
TheFork PAY and TheFork Gift Card: Quick and easy ways to pay directly from TheFork app.
At TheFork, we also believe that people truly make the difference. None of this would be possible without our vibrant Forkies community.
Our strong core values—Better Together, Ownership, Respect, and Growth—are the guiding principles of everything we do, shaping our behaviors: “Come as you are,” “Dig in,” and “Make it Memorable”.
TheFork leads the restaurant booking market in Europe and operates in 11 countries. Our offices boast a fully international team working together in a flexible, multicultural, and constructive environment that provides everyone with space to grow, both professionally and personally.
To learn more about TheFork and our Forkies, explore our official site:
What You Will Do
Are you passionate about securing the application development pipelines and ensuring the security of web applications? Are you looking to thrive in a fast‑paced environment? If so, TheFork is looking to hire an Application Security Engineer for our ever‑growing security team. In this role, you will evaluate the security posture of TheFork’s applications and systems.
Main Activities
- Scanning TheFork web applications looking for vulnerabilities and ensuring they get fixed.
- Working knowledge of any object‑oriented programming language (eg. Node / Typescript).
- Strong IaaS security skills, with a focus on cloud technologies like AWS.
- Researching new security threats, vulnerabilities, and exploit techniques.
- Responding to new security threats and helping implement new requirements.
- Provides technical guidance and oversight when working with developers.
- Work in a team environment while maintaining the confidentiality of investigation information.
- Strong knowledge of working with OWASP concepts for various solutions.
Who You Are
- Bachelor’s Degree, preferably in a technical field i.e. Information Systems or Computer Science.
- Security certifications are desired but not required (CISSP, GIAC, CEH, Security+, CSSLP).
- At least 2 years of demonstrated manual security testing.
- You must have a solid understanding of security protocols, cryptography, authentication, authorization, and general application security requirements.
- Experience implementing and operating security technologies and processes in a hybrid cloud environment, such as AWS.
- Strong understanding of IT operations and service support processes.