Zalando logo

Senior Security Engineer (Application Security)

Zalando

Job Overview

As a Senior Security Engineer at Zalando, you will play a crucial role in identifying, assessing, and mitigating security risks related to applications. You will work in a dynamic environment on the line between the responsible product teams and security, ensuring a security-by-design approach and integrating security throughout the Software Development Lifecycle.

Responsibilities

  • Collaborate with cross-functional teams to develop secure applications, incorporating security-related regulatory requirements, industry standards, and best practices.
  • Provide advice, guidance, and hands-on support for security strategies to manage identified security risks and ensure the adoption of mitigation/remediation strategies.
  • Conduct application security assessments, including threat modeling, SAST analysis, manual code reviews, and coordinate penetration tests.
  • Build solutions and automated processes that enable stakeholders to develop secure applications more effectively and efficiently.
  • Educate and train stakeholders on application security best practices.

Requirements

  • Minimum of 5 years of experience in application security or secure development.
  • Solid understanding of application security frameworks like OWASP and secure coding practices.
  • Experience with CI/CD pipelines and the software development lifecycle.
  • Deep understanding of cloud security and containerization technologies.
  • Strong sense of ownership, entrepreneurial & analytical thinking.
  • Excellent communication skills, fluent in written & spoken English.
  • Experience with system, network, and on-prem infrastructure.

Our Offer

Zalando provides a range of benefits, including:

  • Employee shares program.
  • 40% off fashion and beauty products sold and shipped by Zalando, 30% off Zalando Lounge, and discounts from external partners.
  • 2 paid volunteering days a year.
  • Hybrid working model with up to 60% remote per week.
  • Work from abroad for up to 30 working days a year.
  • 27 days of vacation a year.
  • Relocation assistance available.
  • Family services, including counseling and support.
  • Health and wellbeing options (including Gympass).
  • Mental health support and coaching available.

Inclusive by Design

At Zalando, our vision is to be inclusive by design. We do not discriminate on the basis of gender identity, sexual orientation, personal expression, ethnicity, religious belief, or disability status. We assess candidates based on their qualifications and merit.

Feel free to inform us of any accommodations you may need, so we can best support you throughout the hiring process.

Benefits
Extracted with AI

  • Employee shares program
  • 40% off fashion and beauty products sold and shipped by Zalando
  • 30% off Zalando Lounge
  • Discounts from external partners
  • 2 paid volunteering days a year
  • Hybrid working model with up to 60% remote per week
  • Work from abroad for up to 30 working days a year
  • 27 days of vacation a year
  • Relocation assistance available
  • Family services, including counseling and support
  • Health and wellbeing options (including Gympass)
  • Mental health support and coaching available

Similar jobs

Last update: 23 minutes ago

CHECK24 Vergleichsportal GmbH logo
CHECK24 Vergleichsportal GmbH

Junior Security Software Engineer

Join CHECK24 as a Junior Security Software Engineer in Berlin, focusing on application security, vulnerability management, and penetration testing.

HeyJobs logo
HeyJobs

Senior Software Engineer - AWS, Python, Ruby on Rails

Join HeyJobs as a Senior Software Engineer to design scalable systems using AWS, Python, and Ruby on Rails in a dynamic team.

Adva Network Security GmbH logo
Adva Network Security GmbH

Senior Software Engineer - Embedded Systems and Cryptography

Join Adva Network Security as a Senior Software Engineer in Berlin, focusing on embedded systems and cryptography.

netgo logo
netgo

Senior Cloud DevOps Engineer

Join netgo as a Senior Cloud DevOps Engineer in Berlin. Work with Kubernetes, GitOps, and more in a dynamic team environment.

Amazon Web Services (AWS) logo
Amazon Web Services (AWS)

Senior Systems Engineer, Managed Operations

Join AWS as a Senior Systems Engineer in Berlin to lead operations for the European Sovereign Cloud, ensuring high-availability AWS services.

Aiven logo
Aiven

Staff Software Engineer

Join Aiven as a Staff Software Engineer to develop cloud operations platforms using open-source technologies. Hybrid work in Berlin.

Sysdig logo
Sysdig

Senior Software Engineer - .NET and Go

Join Sysdig as a Senior Software Engineer in Berlin, focusing on .NET and Go for cloud security solutions.

Nubank logo
Nubank

Senior Software Engineer - Data Platform

Join Nubank as a Senior Software Engineer to build and maintain core data infrastructure, ensuring reliable and scalable data flow.

Pass App logo
Pass App

Senior Software Engineer (Backend)

Join Pass App as a Senior Software Engineer (Backend) to build scalable web3 solutions using microservices, TypeScript, and Node.js.

Zivver logo
Zivver

Front-end Angular Engineer

Join Zivver as a Front-end Angular Engineer to shape the future of secure web applications. Work with Angular, TypeScript, and more in Amsterdam.

Safe logo
Safe

Senior Software Engineer Mobile (React Native)

Join Safe as a Senior Software Engineer Mobile (React Native) to develop high-quality mobile apps, collaborate with cross-functional teams, and mentor peers.

Delivery Hero logo
Delivery Hero

Software Engineer (JavaScript/React) - Display Ads (AdTech)

Join Delivery Hero as a Software Engineer (JavaScript/React) in Berlin to develop cutting-edge AdTech solutions for the local delivery market.

ZABEL logo
ZABEL

Senior Fullstack Developer Node.js/TypeScript

Join as a Senior Fullstack Developer in Berlin, working with Node.js, TypeScript, and React in IT security. Enjoy a learning budget and 28 days vacation.

Aiven logo
Aiven

Senior Software Engineer - Python, Apache Kafka

Join Aiven as a Senior Software Engineer in Berlin, focusing on Python and Apache Kafka in a hybrid work environment.

Bitmovin logo
Bitmovin

Senior C++ Software Engineer

Join Bitmovin as a Senior C++ Software Engineer to develop scalable video streaming solutions using modern C++ and cloud-native architectures.

CARFAX Europe logo
CARFAX Europe

Senior DevOps Engineer

Join CARFAX Europe as a Senior DevOps Engineer to manage AWS infrastructure, develop CI/CD pipelines, and enhance system observability.

Trust In SODA logo
Trust In SODA

Senior Software Engineer - Dispatching

Join as a Senior Software Engineer to lead dispatching services design, optimizing global networks with Go, Ruby, and React.

PiNCAMP logo
PiNCAMP

Senior Full Stack Engineer

Join PiNCAMP as a Senior Full Stack Engineer to build innovative camping solutions using Python, JavaScript, and cloud technologies.

Conductor logo
Conductor

Senior DevOps Engineer (On Prem)

Join Conductor as a Senior DevOps Engineer in Berlin, optimizing on-premise applications and large databases. Hybrid work, mid-senior level.

Computer Futures logo
Computer Futures

Mid-Level Full Stack Software Engineer - Cloud & Web

Join as a Full Stack Software Engineer focusing on C#, Azure, and Microservices in a dynamic team with flexible work options.

VIAVI Solutions logo
VIAVI Solutions

Senior Software Engineer (C++, Python & Cloud)

Join VIAVI Solutions as a Senior Software Engineer specializing in C++, Python, and cloud technologies. Work in a hybrid environment in Berlin.

Sofico logo
Sofico

Senior Software Engineer - Java, Microservices

Join Sofico as a Senior Software Engineer focusing on Java and Microservices in Bavaria, Germany. Work on ERP solutions for automotive finance.

Bolt logo
Bolt

Senior Full Stack Engineer

Join Bolt as a Senior Full Stack Engineer to work on complex algorithms, backend and frontend systems using Node.js and TypeScript.

Topicus logo
Topicus

Software Engineer - Cloud Applications and Python

Join Topicus as a Software Engineer in Arnhem to develop cloud applications using Python, REST APIs, and ETL processes for healthcare data services.