Main Responsibilities

• Ensure software design security and define secure implementation practices by syncing with teams responsible for the actual product development. 
• Ensure that security-related communication between technical teams involved in releasing the product is smooth (act as a “glue” between all teams so everyone’s on the same page);
• Develop scripts, security automation tools (e.g. for JIRA and GitLab) to enhance application security testing processes;
• Create tasks for the product's security reviews (SAST/DAST/SCA results, application security testing, etc.).
• Cooperate with product teams to learn about changes introduced into the product early to make educated security decisions.
• Ensure mobile/desktop applications and browser extensions are sufficiently tested.
• Support internal and external audits;
• Design and deliver training for security engineering awareness & adoption.
• Actively look for internal security gaps within the product or organization overall.
• Address security questions and give advice regarding the direction of the product's security.

Core Requirements

• Proven experience in mobile/desktop applications security assessment: planning, testing, methodologies, and vulnerability reporting;
• Good understanding of how networks work (OSI and TCP/IP models) with a particular focus on VPNs;
• Experience working with stakeholders to define the scope of security tests and identify remediation actions to address any vulnerabilities identified;
• Knowledge of secure coding practices (particularly differences between different low-level languages, such as C, C++, and Rust, and their respective security considerations);
• Sense of ownership with strong problem-solving and investigation skills;
• Experience with different OS (Linux, Android, iOS, macOS, Windows) security topics;
• Ability to build and maintain relationships, influence key stakeholders across the business;
• Ability to make product-related business decisions based on threats and vulnerabilities affecting it;
• A healthy dose of assertiveness combined with an ability to compromise.