Application Security Engineer (relocation to Barcelona)
Commit
We’re running the software that runs the world – and we want you along for the ride. The company is a special place with a unique combination of brilliance, spirit, and great people. Here, if you’re willing to do more, your career can take off. And since software plays a central role in everyone’s lives, you’ll be part of a critical mission.
In this role, you will work with a team of researchers and ethical hackers focused on offensive security testing, automated exploit discovery, and advanced application security research. Your work will directly influence the security posture of the company's products and help scale secure-by-design principles.
This is a hands-on technical role with a strong emphasis on offensive security, code exploitation, automation, and innovation.
Responsibilities:
In this role, you will work with a team of researchers and ethical hackers focused on offensive security testing, automated exploit discovery, and advanced application security research. Your work will directly influence the security posture of the company's products and help scale secure-by-design principles.
This is a hands-on technical role with a strong emphasis on offensive security, code exploitation, automation, and innovation.
Responsibilities:
- Help to reshape JFrog Product Security
- Plan and execute advanced penetration testing campaigns.
- Develop tools and frameworks for scalable security testing and fuzzing.
- Lead Security innovation by building and managing penetration testing tools \ AI Agents
- Analyze vulnerabilities, perform root cause analysis, and develop proofs of concept.
- Identify systemic product weaknesses and help define long-term mitigations.
- Collaborate with engineering teams to reproduce, triage, and fix vulnerabilities.
- Contribute to security research publications, CVE submissions, and industry knowledge sharing.
- Continuously evolve internal testing capabilities using modern tooling and AI-assisted approaches.
- 4+ year experience in Research and penetration testing.
- Strong coding skills and deep technical understanding of web, API, cloud-native, and backend technologies.
- AI and LLM Penetration testing knowldge and Experience
- Experience with penetration testing tools (Burp Suite, Metasploit, etc.) and Custom Security Tools development.
- Familiarity with modern architectures (e.g., Cloud, microservices, containers, Kubernetes).
- Familiarity with secure software architecture and typical attack vectors.
- Demonstrated ability to do security testing engagements and report technical findings effectively.
- Experience building or integrating automated PT or fuzzing pipelines is a strong advantage.
- Knowledge and hands-on experience with SSDLC tools and CI/CD pipelines,
Як відгукнутися?
Щоб відгукнутися на цю вакансію, вам необхідно авторизуватися на нашому сайті. Якщо у вас ще немає облікового запису, будь ласка, зареєструйтесь.
Розмістити резюмеСхожі вакансії
Senior .Net developer
Levi9 Technology Services,
Київ,
2 дні тому
Who we are! At Levi9, we are passionate about what we do. We love our work and together in a team, we are smarter and stronger. We are looking for skilled team players who make change happen. Are you one of these players? About The Project Our client is a leading media company in Western Europe, delivering high-quality content across...
Semi Senior React Developer - Remote Work | REF#296509
BairesDev,
Київ,
3 дні тому
At BairesDev, we've been leading the way in technology projects for over 15 years. We deliver cutting-edge solutions to giants like Google and the most innovative startups in Silicon Valley. Our diverse 4,000+ team, composed of the world's Top 1% of tech talent, works remotely on roles that drive significant impact worldwide. When you apply for this position, you're taking...
Senior/Lead Node.js Software Engineer
EPAM Systems,
Київ,
5 днів тому
EPAM is looking for a Senior/Lead Node.js Software Engineer to join our team. You will be at the forefront of technology, leveraging modern frameworks like Nest.js, cloud platforms such as AWS and Azure, and the transformative power of AI to solve challenging business problems. Kindly note that this role supports remote work, but only from within Ukraine. ...