About the Role:
Join us as an Application Security Engineer and help shape the security of Veeam products, enhancing data protection and driving business resilience.
What You’ll Do:
- Conduct regular security assessments, vulnerability scanning, and penetration testing of Veeam products and services
- Work with development teams to integrate secure development practices into the software development lifecycle
- Collaborate on the design and implementation of security within Veeam products
- Threat modelling and design reviews for new and existing Veeam products
- Conducting manual source code security audits
- Using automated application-analysis tools
Veeam, the #1 global market leader in data resilience, believes businesses should control all their data whenever and wherever they need it. Veeam provides data resilience through data backup, data recovery, data portability, data security, and data intelligence. Based in Seattle, Veeam protects over 550,000 customers worldwide who trust Veeam to keep their businesses running. Join us as we move forward together, growing, learning, and making a real impact for some of the world’s biggest brands. The future of data resilience is here - go fearlessly forward with us.
What You’ll Get:
- 29 paid days off annually plus three global VeeaMe Days for self-care and paid volunteer time
- Paid parental, maternity, and paternity leave
- Fully covered family medical plan, dental, rehab, and vaccinations
- Life, critical illness, and disability insurance
- Employer pension contribution via PPK
- Monthly lunch and wellness benefits
- Six free therapy sessions, plus legal and financial advice
- Professional training and education, including courses and workshops, internal meetups, and unlimited access to our online learning platforms (LinkedIn Learning, Athena, O’Reilly) and mentoring through our MentorLab program
What You’ll Bring:
- Ability to read source code on programming languages (such as C/C++/C#/JavaScript)
- A good understanding of the principles of secure software development
- A desire to develop in the field of application security
- A lively and flexible mind, clear logic, and analytical skills
- The desire and ability to work as part of a team
- English proficiency for daily communication within international teams
Bonus Skills:
- Knowledge of scripting languages (Python, PowerShell, Bash, Ruby, etc.)
- Knowledge of modern cryptographic algorithms
- Experience with DAST and SAST tools
- Skills using OWASP ZAP, Burp Suite, Kali Linux tools
- Certifications such as OSCP, CEH, CSSLP, CCSP, AWS Certified Security, etc.
- Familiarity with cloud platforms (such as AWS/Azure/GCP)
- Experience playing CTF
- Experience with HackTheBox
- Experience with bug bounty hunting
