Application Security Engineer | Senior | Low-level at Nord Security

Prague, Prague, Czechia

Apply Now
Nord Security Logo
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
CybersecurityIndustries

Requirements

  • Proven experience in mobile/desktop application security assessment planning, testing, methodologies, and vulnerability reporting
  • Strong understanding of secure coding practices
  • Ability to perform manual security code audit
  • Proficiency in at least one low-level programming language (e.g., C, C++, Rust, Go)
  • Solid understanding of networking protocols such as TCP, UDP, and the HTTP protocol
  • Familiarity with debuggers (e.g., GDB, LLDB, WinDbg)
  • Familiarity with reverse engineering tools (e.g., Ghidra, IDA)
  • Solid understanding of memory corruption issues, buffer overflows, and related vulnerability classes
  • Familiarity with common authentication and authorization protocols (OAuth, SAML, JWT, etc.)
  • Ability to work with networking tools such as Wireshark and tcpdump
  • Ability to quickly assimilate new technologies and tools
  • Sense of ownership with strong problem-solving and investigation skills
  • Ability to build and maintain relationships, influence key stakeholders across the business
  • Bonus: Community contributions like public CVEs, bug bounty recognition, open-source tools, blogs, etc

Responsibilities

  • Conduct security reviews of application designs, source code, and third-party libraries
  • Perform regular application vulnerability assessments using both automated tools and manual testing techniques (e.g., SAST, DAST, SCA, penetration testing)
  • Collaborate with development teams to design secure architectures and implement security controls
  • Help maintain security tools, scripts, and processes to support secure development
  • Stay current with industry trends, zero-day vulnerabilities, and best practices in application security
  • Develop scripts and security automation tools to enhance application security testing processes
  • Design and deliver training for security engineering awareness & adoption
  • Actively look for internal security gaps within the product or organization overall
  • Ensure mobile/desktop applications are sufficiently tested and support internal and external audits

Skills

SAST
DAST
SCA
penetration testing
C
C++
Rust
Go
secure coding
TCP
UDP
HTTP
debuggers
vulnerability assessment
manual code audit

Nord Security

Cybersecurity services for individuals and businesses

Website

About Nord Security

Nord Security provides a variety of cybersecurity products aimed at protecting both individuals and businesses from online threats. Their main offerings include NordVPN, which is a virtual private network that ensures secure internet access through advanced encryption and threat protection, making it popular among millions of users. For businesses, NordLayer offers a tailored cybersecurity solution that allows secure access to the internet and company resources while helping organizations comply with various regulations. Additionally, NordLocker is an encrypted cloud storage service that enables users to securely sync, back up, and share files, utilizing strong cryptography for data protection. Unlike many competitors, Nord Security combines multiple cybersecurity services into a single subscription model, making it easier for users to manage their online safety and data privacy.

Vilnius, LithuaniaHeadquarters
2012Year Founded
$194.5MTotal Funding
GROWTH_EQUITY_VCCompany Stage
CybersecurityIndustries
1,001-5,000Employees

Benefits

Health Insurance
Mental Health Support
Professional Development Budget
Flexible Work Hours
Additional Paid Leave

Risks

Emerging VPN providers offering lower prices could erode Nord Security's market share.
Rapid evolution of cyber threats may strain Nord Security's resources.
Expansion into eSIM technology could face regulatory challenges in different countries.

Differentiation

Nord Security offers a comprehensive cybersecurity package with advanced threat protection.
NordLayer provides businesses with secure internet access and compliance support.
NordLocker uses state-of-the-art cryptography for secure cloud storage.

Upsides

Nord Security's partnership with Bango enhances distribution through telecom channels.
The global VPN market is expected to grow significantly, benefiting NordVPN.
Demand for secure remote work solutions boosts Nord Security's business products.

Related Jobs

United States
Remote iconRemote

Senior Application Security Engineer

M&T Bank
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
Toronto +3 more
Remote iconRemote

Senior Software Engineer, Secure Agents

Cohere
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
United States
Remote iconRemote

Software Engineer, Security

Render
$193,000 - $265,000/year
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
Remote
Remote iconRemote

Principal DevSecOps Engineer

Second Front Systems
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)

Land your dream remote job 3x faster with AI

Try Jobo Free