Main Responsibilities

Conduct security reviews of application designs, source code, and third-party libraries;

Perform regular application vulnerability assessments using both automated tools and manual testing techniques (e.g., SAST, DAST, SCA, penetration testing);

Collaborate with development teams to design secure architectures and implement security controls;

Help maintain security tools, scripts, and processes to support secure development;

Stay current with industry trends, zero-day vulnerabilities, and best practices in application security;

Develop scripts and security automation tools to enhance application security testing processes;

Design and deliver training for security engineering awareness & adoption;

Actively look for internal security gaps within the product or organization overall.

Ensure mobile/desktop applications are sufficiently tested and support internal and external audits;

Core Requirements

Proven experience in mobile/desktop application security assessment planning, testing, methodologies, and vulnerability reporting;

Strong understanding of secure coding practices;

Ability to perform manual security code audit;

Proficiency in at least one low-level programming language (e.g. C, C++, Rust, Go);

Solid understanding of networking protocols such as TCP, UDP and the HTTP protocol.Familiarity with debuggers (e.g. GDB, LLDB, WinDbg);

Familiarity with reverse engineering tools (e.g. Ghidra, IDA);

Solid understanding of memory corruption issues, buffer overflows and related vulnerability classes;

Familiarity with common authentication and authorization protocols (OAuth, SAML, JWT, etc.);

Ability to work with networking tools such as Wireshark, tcpdump;

Ability to quickly assimilate new technologies and tools;

Sense of ownership with strong problem-solving and investigation skills;

Ability to build and maintain relationships, influence key stakeholders across the business;

Bonus points for community contributions like public CVEs, bug bounty recognition, open-source tools, blogs, etc.

Salary Range

Gross Salary 16900 - 32900 PLN/Month

Additional Information

About Us

Nord Security is a global leader in internet privacy and security solutions and Lithuania’s second tech unicorn. Established in 2012, Nord Security now has more than 1400 employees and serves millions of users worldwide. Our team has a global mission to shape a more secure and peaceful online future for people everywhere. With that in mind, we built several advanced cybersecurity solutions:NordVPN, NordLayer, NordLocker, NordPass, NordProtect, NordStellar, and Saily.

And we’re always looking to expand our team of:

• Future shapers

• Restless achievers

• Self-movers

• Honest communicators

• Team players

What We Offer

• Access to Nord Security products. We build solutions used by millions of users worldwide, and you’ll get to experience our products firsthand, at no charge;

• Professional growth. Internal and external events, online training, conferences, books - everything you need to reach full potential;

• Health benefits. Private health insurance, online workouts, consultations, programs to improve mental health to feel and be your best;

• Mental wellbeing. Access to mental health tools like Calm, Headspace, and Mindletic. Options for therapy to keep your emotional wellbeing in check;

• Team spirit. Team buildings and parties with games, shows, tastings, food coupons, gifts, and it’s on us;

• Additional paid leave. Additional days are covered by us in cases of illness or special occasions;

• Flexibility. Flexible working time arrangement.

Kindly refer to our Privacy Notice for Recruitment Candidates for comprehensive information regarding our data handling procedures throughout recruitment processes: https://bit.ly/3urJdOL

Nordsec

Application Security Engineer | Mid-Senior | Low-Level

Similar Engineering Jobs

Application Security Engineer

Senior Product Security Engineer

Product/Applications Security Engineer (copy)

Information Security Compliance Senior Manager / Director