Senior Application Security Engineer
3 weeks ago
Are you searching for an opportunity to play a key role in driving the dramatic growth of a highly successful software company?
At Poppulo, we’re working on what’s next in communications and workplace technology. As a pioneer in this industry, we understand that meaningfully reaching every employee is hard. And so is managing office space in a hybrid world. And so is improving the customer and guest experience. We exist to make each of these things easier. We exist to bring harmony to our customers.
And we do that at enterprise scale. Our omnichannel employee communications, customer communications, and workplace experience platform is trusted by over 6,000 organizations today, reaching more than 35M employees and delivering content to 500,000+ digital signs.
We know there’s no such thing as a “perfect" candidate - we’re all a work in progress and are growing new skills and capabilities all the time. We encourage you to apply for a position with Poppulo even if you don’t meet 100% of the requirements. We believe in fostering an environment where there is a diversity of perspectives, in hopes that we can all thrive.
Overview:Poppulo is seeking a Senior Application Security Engineer to join our security team. The role of the Senior Application Security Engineer is to identify and anticipate vulnerabilities to protect Poppulo assets. They will utilize established and create new processes and capabilities to focus on vulnerability management, secure code development, software development lifecycles, and security assessments. They will support the development and maintenance of business continuity planning, data, systems, and network security for systems and controls related to their job duties.
Should be flexible to work in UK shifts
Role Responsibilities:- Perform and support application security reviews, consulting, testing in coordination with developer operations, and threat modeling (using DREAD and STRIDE), including code review and dynamic testing.
- Own and perform application security vulnerability management.
- Support the bug bounty program.
- Facilitate and support the preparation of security releases.
- Support and consult with product and development teams regarding application security.
- Assist in creation of secure code training to end-users and developers.
- Assist in development of automated security testing to validate that secure coding best practices are being used.
- Participate in the planning, implementing, and managing of application security measures/technologies to protect the organization's information systems and networks.
- Assist with the review, development, and implementation of application security policies, procedures, and service documentation.
- Monitoring application security systems to identify alerts and response efforts for potential application security events/findings.
- Develop and mentor junior staff through open communication, training and development opportunities, and celebrate their success.
- Facilitate our secure SDLC (Software Development Life Cycle) which includes AVS (Application Vulnerability Scanning) scanning, SD3+C, and PD3+C methodologies, etc.
- Manual Penetration Testing of our Products and Vendor Products.
- Develop detailed vulnerability reports for application owners and management teams.
- Conduct detailed penetration test report read-outs with application owners and management teams and provide remediation recommendations.
- Participate in On-Call rotations.
- Bachelor's degree in Computer Science, Information Systems, Cyber Security related field, or equivalent experience.
- One or more security-based certifications preferred, such as CISSP, Security +, GWEB, GWAPT, etc.
- 5+ years’ experience in some form of information security discipline; Information Security Engineering, Application Security Engineering, etc.
- 5+ years of experience performing network and application security testing.
- 3+ years working on security principles in software engineering with strong knowledge in Open Web Application Security Project (OWASP) security principles.
- Experience with the NIST or ISO 27001/2 security frameworks.
- Experience with the participation of SOC-based independent audits a plus.
- Ability to use GitLab/GitHub/CICD Pipelines.
- Familiarity with common security libraries, security controls, and common security flaws.
- Basic development or scripting experience and skills.
- Experience with OWASP, static/dynamic analysis, and common security tools.
- A deep understanding of network and web related protocols (such as TCP/IP, UDP, HTTP, HTTPS, etc.).
- Experience working with developers.
- Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner.
- Experience identifying security issues through code review.
- Strong problem-solving skills and self-motivation to learn and upskill regularly.
- Experience working in a global hybrid environment with teams applying an agile methodology.
- The ability to work independently and across functional teams while developing key working relationships.
- IT (Information Technology) experience and understanding of common devices, equipment, environments, network diagrams & systems.
- Extraordinary communication (verbally and written) and problem-solving skills with an ability to deliver on time and work with minimal direction.
- Proven record of producing documentation relating to application services.
Preferred:
- Experience working asynchronously.
- Involvement in local or regional security user groups or conferences.
- A team-first, collaborative approach.
- Ability to explain complex technical issues clearly and confidently in simple and understandable terms.
- Must be able to adapt quickly to ever changing requirements and priorities.
Who We Are
We are a values-driven organization that encourages our employees to bring their authentic selves to work every day and empowers everyone to make a tangible impact on our products, clients, and culture. We offer a dynamic environment with driven, fun, and flexible individuals who thrive on challenge and responsibility. This is an opportunity to contribute to our culture and join a company that’s on the move.
We live the Poppulo values each day, as they are key to everything we do.
- Bring Your Best Self
We show up authentically, are self-aware and always strive to be better.
- See it. Own it. Solve it.
We proactively innovate and solve for our customers and each other. We set an example with high standards for our work. We foster a culture of learning, acknowledging our successes and our failures.
- Together We’re Better
We value and celebrate our diversity. We learn from others, respecting their expertise, and focus on building trust. That's what makes us a team.
Named a Great Place to Work in 2015, 2016, 2017, 2018, 2019, 2020, and 2021, we are a fast-growing global technology company, with offices in Ireland, the US, and the UK.
Poppulo is an equal opportunity employer.
We are committed to protecting your privacy. For details on how we collect, use, and protect your personal information, please refer to ourJob Applicant Privacy Policy.
-
Senior Application Security Engineer
4 weeks ago
ireland GemPool Recruitment Full timeGet AI-powered advice on this job and more exclusive features.Senior Application Security Engineer at GemPool RecruitmentGemPool is a specialised IT recruitment agency that provides top IT jobs.We are currently hiring for one of our clients for the position of Senior Application Security Engineer. This is a full-time opportunity to play a pivotal role in...
-
Senior Application Security Engineer
4 weeks ago
ireland Brightflag Full timeThe OpportunityAs an Application Security Engineer at Brightflag, you will play an integral role in the success of our engineering team and help ensure that features are delivered securely. We have a number of high-profile customers across Europe, the US, and Australia, and we are growing quickly. Our engineers take ownership of their work, solve complex...
-
Senior Application Security Engineer
4 weeks ago
ireland LastPass Full timeAbout LastPassLastPass is a leader in password and identity management, making it easier to log into life and work. Trusted by 100,000 businesses and millions of users, LastPass combines advanced security with effortless access for individuals, families, small business owners, and enterprise professionals. With LastPass, important credentials are protected...
-
Senior Application Security Engineer
4 weeks ago
ireland Malwarebytes Full timeDescriptionMalwarebytes believes that when people and organizations are free from threats, they are free to thrive. Founded in 2008, CEO Marcin Kleczynski had one mission: to rid the world of malware. Today, Malwarebytes has grown beyond malware remediation to ensuring cyberprotection for everyone, providing device protection, privacy, and prevention...
-
Senior Application Security Engineer Ireland
3 weeks ago
ireland Tbwa ChiatDay Inc Full timeAs an Application Security Engineer at Brightflag, you will play an integral role in the success of our engineering team and help ensure that features are delivered securely. We have a number of high-profile customers across Europe, the US, and Australia, and we are growing quickly. Our engineers take ownership of their work, solve complex problems...
-
Senior Application Security Engineer
4 weeks ago
ireland Tbwa ChiatDay Inc Full timeSenior Application Security Engineer (PHP)Remote - IrelandAbout LastPassLastPass is a leader in password and identity management, making it easier to log into life and work. Trusted by 100,000 businesses and millions of users, LastPass combines advanced security with effortless access for individuals, families, small business owners, and enterprise...
-
Senior IT Security Engineer
4 weeks ago
ireland MACOM Technology Solutions Holdings Full timeCompany Overview:MACOM designs and manufactures semiconductor products for Data Center, Telecommunication and Industrial and Defense applications. Headquartered in Lowell, Massachusetts, MACOM has design centers and sales offices throughout North America, Europe and Asia. MACOM is certified to the ISO9001 international quality standard and ISO14001...
-
Senior Security Engineer
4 weeks ago
ireland Reperio Human Capital Full timeLocation: Cork City, Cork, Republic of IrelandType: PermanentStart: ASAPSenior Security EngineerJob ID: 106825Desired Skills:Cyber, Security, Network Security, Firewalls, CorkWe are looking for a talented Senior Security Engineer to join a multinational company in the communications space, focusing on their IT Security Team. This role will involve working on...
-
Senior Security Engineer, AWS Security
3 weeks ago
ireland Amazon Full timeCome and build innovative services that protect our cloud from advanced security threats!As a Senior Security Engineer on our team, you'll help build and manage services that detect and automate the mitigation of cybersecurity threats across Amazon's infrastructure, including advanced persistent threats. You'll work with data scientists, software development...
-
Application Security Architect
4 weeks ago
ireland ReversingLabs Corporation Full timeAt ReversingLabs, our software supply chain security and threat intelligence solutions have become essential to advancing cybersecurity maturity around the globe. We're on a journey to expand adoption and accelerate growth by hiring top talent across the security industry.Notable breaches such as SolarWinds, CircleCI, and 3CX have elevated software supply...
-
Application Security Architect
4 weeks ago
ireland ReversingLabs Full timeAt ReversingLabs, our software supply chain security and threat intelligence solutions have become essential to advancing cybersecurity maturity around the globe. We're on a journey to expand adoption and accelerate growth by hiring top talent across the security industry.Notable breaches such as SolarWinds, CircleCI, and 3CX have elevated software supply...
-
Senior Offensive Security Engineer
3 weeks ago
ireland Tree Trust Full timeGlobal IT, Security, & Business Systems, Amsterdam, Netherlands / Dublin, IrelandSurveyMonkey is the world’s most popular platform for surveys and forms, built for business—loved by users. We combine powerful capabilities with intuitive design, effectively serving every use case, from customer experience to employee engagement, market research to payment...
-
IT Security Engineer
3 weeks ago
Ireland Reperio Human Capital Full timeIT Security Engineer 101056 Desired skills: Security Engineer, Cloud Security, Penetration Testing, Threat Intelligence, Vulnerability Scanning Remote (Munster, Ireland) / 6-month contract My client is seeking a highly skilled and motivated IT Security Engineer to join their dynamic team in the financial services sector. The role will be for an...
-
Security Engineer, AWS Security
3 weeks ago
ireland Amazon Full timeCome and build innovative services that protect our cloud from advanced security threats!As a Security Engineer on our team, you'll help build and manage services that detect and automate the mitigation of cybersecurity threats across Amazon's infrastructure, including advanced persistent threats. You'll work with data scientists, software development...
-
Lead Security Engineer
4 weeks ago
ireland JPMorgan Chase & Co. Full timeJob DescriptionTake on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies.As a Lead Security Engineer at JPMorgan Chase within Corporate Technology, you are an integral part...
-
Senior Offensive Security Engineer
4 weeks ago
ireland HubSpot Full timePOS-26030The HubSpot Threats and Vulnerabilities team protects our customers by systematically reducing HubSpot's attack surface and improving the maturity of HubSpot's Product Security. We create this path forward by mapping out HubSpot's defences, identifying and prioritizing improvements based on threat intelligence, and testing our applications and...
-
Senior Analyst, Security Compliance
3 weeks ago
ireland Twilio Full timeJoin the team as Twilio’s next Senior Analyst, Security ComplianceWho we areAt Twilio, we’re shaping the future of communications, all from the comfort of our homes. We deliver innovative solutions to hundreds of thousands of businesses and empower millions of developers worldwide to craft personalized customer experiences.Our dedication to remote-first...
-
ireland airbnb, Inc. Full timeSenior Security Engineer, Threat Detection and ResponseAirbnb was born in 2007 when two Hosts welcomed three guests to their San Francisco home, and has since grown to over 4 million Hosts who have welcomed more than 1 billion guest arrivals in almost every country across the globe. Every day, Hosts offer unique stays and experiences that make it possible...
-
Senior Physical Security System Design Engineer
4 weeks ago
ireland Konnectway Full timeSenior Physical Security System Design EngineerJob DescriptionAt KonnectWay, we are seeking a seasoned Senior Physical Security System Design Engineer. This role is critical for designing and conceptualizing advanced physical security measures for large-scale infrastructures, focusing on data centers. If you have a deep passion for security technology...
-
Security Engineer 4
4 weeks ago
ireland Oracle Full timeJob DescriptionWe are seeking a Detection Engineer to enhance our SaaS cloud security posture by developing, optimizing, and automating threat detection and response capabilities. This role involves designing and implementing detection-as-code, leveraging cloud-native security tools, and collaborating with security operations and engineering teams to...
